IT compliance management

Course DTL48

  • Duration:
    • 2 days

Dates:

Dates on request - if no dates are listed, please contact us to arrange an individual date by e-mail at it-campus@softwareone.com or by phone on +49 341 2568-486.

The obligation to comply with the law and regulations presents companies with a major challenge against the backdrop of increasingly complex laws and the international orientation of their business activities. Companies emphasise the importance of compliance in day-to-day business by maintaining their own departments and structures to ensure the best possible adherence to laws and company guidelines. However, compliance is also an indicator for the establishment and continuation of business relationships. Many companies now consciously choose their business partners based on whether they are "compliant".

This course offers you an exciting insight into the key legal and organisational requirements that we believe are important for the conception, implementation, organisation and (continuous) improvement of integrated, standard-oriented compliance management in the areas of IT security and data protection.

The first part provides the essential framework conditions and liability risks of compliance. Although this cannot be exhaustive, the aim is to show how many areas of law are affected in the areas of IT security and data protection. Using illustrative examples from case law and practice, the most important rules from various industries are conveyed and at the same time interfaces to corporate compliance are shown.

The second part of the course explains the structure and basic building blocks of an appropriate compliance management system. In addition to examples of suitable methods and tools for a compliance organisation, various design options will be discussed, including best practice examples, after the needs of companies have been determined.

Your added value

After the training course, you will have in-depth knowledge of compliance in the areas of IT security and data protection and you will have an overview of the special compliance requirements in regulated industries. You will recognise the typical risks and receive suitable implementation options for a compliance organisation in your company.

Day 1:

  • "Compliance" concept and the need for "lived" compliance in the company
  • Identification of typical problems in the company
  • Key interfaces and differentiation from corporate compliance
  • General liability risks in the absence of compliance
  • Requirements profile due to special position ("compliance manager") in the focus of IT security and data protection
  • Specific IT compliance requirements in various industries (banking, insurance, IT, etc.)
  • Adherence to IT compliance when drafting IT-specific contracts (e.g. licence and outsourcing agreements, SLA agreements)
  • Compliance requirements in data protection according to GDPR
  • Liability risks in the absence/lack of a data protection concept
  • Requirements profile due to special position ("data protection officer")
  • Specific compliance requirements for data processing; advice and known pitfalls

2nd day:

  • Communication of the essential requirements for setting up an appropriate compliance management system, taking into account current case law
  • Explanation of basic methods, established standards and building blocks for controlling, monitoring and checking effectiveness
  • Best practice examples
  • Compliance and optimised insurance cover

The course is aimed at people who are or will be involved in IT security and data protection compliance and the management of such compliance structures as part of their work.

Good basic knowledge of company law We recommend that newcomers attend the course DTL 25 Understanding licence law beforehand.

  • Overview of the relevant national and European legal situation
  • Recognising compliance risks
  • Design options for the implementation of the compliance programme in the company

If your training course takes place in the virtual classroom, you will receive digital training documents via the Mimeo platform (included in the course price), which can be used online and offline in the Mimeo environment (search/notes, etc.). If you would like printed training documents in addition to the digital documents, you can order these for € 74,-- net via the registration form.

Unfortunately, it is not possible to send printed training materials to Switzerland and other non-EU countries for customs reasons.

All classroom training courses are generally equipped with printed training materials (paper - included in the course price). If you would also like a digital training document via Mimeo, you can order this for € 24 net via the registration form.

For face-to-face courses, refreshments during breaks (drinks, pastries and lunch) are included in the course price.

Contact us

SoftwareONE

IT CAMPUS
Customer Training Solutions

Blochstraße 1
D-04329 Leipzig
*The services of SoftwareONE Deutschland GmbH directly serving school and educational purposes are predominantly VAT-exempt according to § 4 No. 21 a) bb) UStG. Contact us - we are happy to help!