-
Certificates: Certificate "IT security officer with TÜV Rheinland-certified qualification"
Certificate "Data protection officer with TÜV Rheinland-certified qualification" -
Examination: Practical project work with final presentations
IT security officer with TÜV Rheinland-certified qualification
Data protection officer with TÜV Rheinland-certified qualification -
Teaching Times: Full-timeMonday to Friday from 8:30 a.m. to 3:35 p.m. (in weeks with public holidays from 8:30 a.m. to 5:10 p.m.)
-
Language of Instruction: German
-
Duration: 8 Weeks
IT security officer with TÜV Rheinland-certified qualification
Structure and core processes of IT security (approx. 2 days)
Structure of IT security in companies and its economic significance
People involved, functions and communication channels within the IT network
Basic regulations, legal principles, standards
Physical security in the IT environment (approx. 2 days)
Classification of physical security
Introduction to physical security standards
Security measures for the IT infrastructure
Control and alarm mechanisms
Artificial intelligence (AI) in the work process
Presentation of specific AI technologies
and possible applications in the professional environment
Identity and access management (approx. 2 days)
Basics of access management
Differentiation and specification of access and access controls in a company and their implementation
Conception and control in access management
Audit-proof archiving
Identity verification and assignment of rights
Protection mechanisms for the IT infrastructure
Threat scenarios and consequences for implementation in the company (approx. 3 days)
DLP - the importance of data loss prevention and data leakage prevention in IT security
Data loss prevention and data leakage prevention measures
Classification and protection against malware
IOT (Internet Of Things) and Industry 4.0 - possible threat scenarios
Network security (approx. 2 days)
Special measures for the protection of the network
Data protection requirements for mail servers
Administration and security for cloud use
Checking system components and applications against unauthorized persons/programs/remote access
Analysis and realization of an IT security system for companies (approx. 2 days)
Basics of the information security standard according to ISO/IEC 27001:2022 and the Federal Office for Information Security (BSI) (approx. 2 days)
Structure and implementation of emergency management according to BSI standard 100-4 and 200-4 (BCM) (approx. 1 day)
IT security in the company - training and sensitization for employees (approx. 1 day)
Project work, certification preparation and certification exam "IT security officer with TÜV Rheinland certified qualification" (approx. 3 days)
Data protection officer with TÜV Rheinland-certified qualification
Data protection in the company - basics (approx. 2 days)
Structure of the European General Data Protection Regulation
The Federal Data Protection Act - subject matter and objectives
GAP analysis between BDSG and GDPR
Areas of application
Definitions of terms
Principles and rights of data subjects (approx. 1 day)
Principles for the processing of personal data
Legitimate interests
Consent
Transparency requirement
Duty to inform
Rights of data subjects
Rectification and erasure
Right to object
Restrictions
Responsible persons and data processors (approx. 2 days)
Privacy by design & default, risk assessments
Order processing
Register of processing activities
Security of processing
Entry, access and access controls
Data protection impact assessment
Data protection officer (appointment, position, tasks, attitude, probationary period)
Other bodies with a data protection function
The role of the works council (co-determination)
Code of conduct, certification, pre-audit, main audit, post-audit
Artificial intelligence (AI) in the work process
Presentation of specific AI technologies
and possible applications in the professional environment
Transfer of personal data (approx. 2 days)
General principles of natural transfers
Data transfers to third countries
Supervisory authorities
Responsibilities, tasks, powers
Legal remedies, liability and sanctions (approx. 2 days)
Legal remedies
Liability, fines, sanctions
Special processing situations
Final provisions
Federal Data Protection Act (approx. 1 day)
Scope of application, video surveillance of public areas
Exceptions to the rights of data subjects
DPOs of public and non-public bodies
LDAs, fine regulations, sanctions
IT security and data protection (approx. 3 days)
Network components, storage components (RAID)
Basics of access management
IT security basics
IT baseline protection standards
Risk factors
Improvement options
Other areas of responsibility (approx. 3 days)
Basics of social data protection
Basics of employee data protection
Personnel file, data access and information rights
Setting up and operating a data protection management system and SDM
The legal framework of outsourcing from a data protection perspective
Data protection in the area of marketing and advertising measures
TDDDG (approx. 1 day)
Structure and contents of the Telecommunications Digital Services Data Protection Act
Project work, certification preparation and certification exam "Data Protection Officer with TÜV Rheinland certified qualification" (approx. 3 days)
Changes are possible. The course content is updated regularly.
As an IT security officer, you are familiar with the key aspects and requirements of IT security: data security and protection, physical IT security, cryptography, network security, PKI, computer security and organizational security. You know how to implement the relevant standards according to ISO/IEC 27001 and IT baseline protection according to BSI in practice.
You will also be prepared for the tasks of a data protection officer. You will have the necessary knowledge based on the current EU GDPR for legally compliant handling of personal data, knowledge in the area of data protection organization and IT security.
This course is aimed at specialists and managers who are responsible for data processing, e.g. employees from human resources, administration, quality management or the legal department.
Persons with additional qualifications as data protection officers act as a link between management, the works council, supervisory authorities and employees.
Didactic concept
Your lecturers are highly qualified both professionally and didactically and will teach you from the first to the last day (no self-study system).
You will learn in effective small groups. The courses usually consist of 6 to 25 participants. The general lessons are supplemented by numerous practical exercises in all course modules. The practice phase is an important part of the course, as it is during this time that you process what you have just learned and gain confidence and routine in its application. The final section of the course involves a project, a case study or a final exam.
Virtual classroom alfaview®
Lessons take place using modern alfaview® video technology - either from the comfort of your own home or at our premises at Bildungszentrum. The entire course can see each other face-to-face via alfaview®, communicate with each other in lip-sync voice quality and work on joint projects. Of course, you can also see and talk to your connected trainers live at any time and you will be taught by your lecturers in real time for the entire duration of the course. The lessons are not e-learning, but real live face-to-face lessons via video technology.
The courses at alfatraining are funded by Agentur für Arbeit and are certified in accordance with the AZAV approval regulation. When submitting a Bildungsgutscheinor Aktivierungs- und Vermittlungsgutschein, the entire course costs are usually covered by your funding body.
Funding is also possible via Europäischen Sozialfonds (ESF), Deutsche Rentenversicherung (DRV) or regional funding programs. As a regular soldier, you have the option of attending further training courses via Berufsförderungsdienst (BFD). Companies can also have their employees qualified via funding from Agentur für Arbeit (Qualifizierungschancengesetz).