The ISO/IEC 27557 provides guidelines for organizational privacy risk management, extended from ISO 31000:2018. The ISO/IEC 27557 provides guidance to organizations for integrating risks related to the processing of personally identifiable information (PII) as part of an organizational privacy risk management programme.
The Privacy Risk Management Foundation (ISO/IEC 27557) Foundation is a certification intended for individuals seeking to validate their foundational knowledge of the ISO/IEC 27557.
This exam includes topics such as Scope of the ISO/IEC 27557, Normative references, Terms and definitions, Principles of organizational privacy risk management, Framework (Leadership and commitment, Integration, Design, Implementation, Evaluation, and Improvement), Risk management process (Communication and consultation, Scope, context and criteria, Risk assessment, Risk treatment, Monitoring and review, and Recording and reporting).
The Privacy Risk Management Foundation (ISO/IEC 27557) certification exam is an online, closed-book, and remotely-proctored exam. This exam consists of 40 multiple-choice questions. The passing score is 70%. Candidates will have 60 minutes to complete the exam. The exam is available in English only. Validate your knowledge of the ISO/IEC 27557 and advance your career in Privacy. Register for your online exam now!
Exam code |
ITC-081 |
Launch date |
January 30, 2023 |
Exam description |
The Privacy Risk Management Foundation (ISO/IEC 27557) certification exam tests the candidate's foundational knowledge of the ISO/IEC 27557. |
Current version |
v1 |
Exam format |
Multiple choice; Computer-based; Closed book; Online Proctored Exam |
Number of questions |
40 questions |
Passing score |
70% (28 out of 40) |
Exam duration |
60 minutes |
Level |
Foundation |
Languages |
English |
Exam description |
This exam includes topics such as Scope of the ISO/IEC 27557, Normative references, Terms and definitions, Principles of organizational privacy risk management, Framework (Leadership and commitment, Integration, Design, Implementation, Evaluation, and Improvement), Risk management process (Communication and consultation, Scope, context and criteria, Risk assessment, Risk treatment, Monitoring and review, and Recording and reporting). |
RECOMMENDED HOURS OF STUDY |
16 hours |
BLOOM'S TAXONOMY |
Level 1 (Remembering), Level 2 (Understanding) and Level 3 (Applying) |
Recommended reading |
• ISO/IEC 27557:2022 Information security, cybersecurity and privacy protection - Application of ISO 31000:2018 for organizational privacy risk management |
Prerequisites |
There are no prerequisites for this certification |
Recommended experience |
Six months of work experience in Privacy and Data Protection |
Validity period |
Lifetime |
Domains | Weight |
---|---|
1. Scope of the ISO/IEC 27557:2022 |
5% |
2. Terms and definitions |
15% |
3. Principles of organizational privacy risk management |
20% |
4. Framework |
20% |
5. Risk management process |
40% |
Total | 100% |
Browse our certification programs and choose your certification.
Discover the exam objectives and prepare for your exam.
Register for your online proctored exam.
Take your online proctored exam in the comfort of your home or office.
Congratulations! You are certified!
All exams are available for $120 USD each. Prices may vary slightly by region and currency exchange rates.
There are no prerequisites to take the exams. Itcerts recommends that candidates have at least six months of work experience in the area that the certification covers.
If a candidate does not achieve a passing score on the first attempt, there is no waiting period between the first and the second attempt. If a candidate does not achieve a passing score on the second attempt, the candidate must wait at least 7 days before retaking the exam for a third time. A candidate may not take a given exam any more than three times per year (12 months).
Visit the Online Proctored Exam registration page to find complete instructions.
Training is recommended as part of your certification preparation, but it is not mandatory.
Our exams are currently available in English and Portuguese (Brazilian).
Exams are delivered online (Online Proctored Exams) and can be taken from anywhere in the world.
Itcerts certifications are considered good-for-life and do not expire.
Your employer can verify your certification on our certification verification page. Your certification number will be needed in order to process the verification.
Subscribe to our newsletter