Cybersecurity for Data Protection Professionals


This course is available by: Classroom, Virtual-LIVE and eLearning


This course can be attended on an in-person basis at dedicated training venues (the yellow box below lists the upcoming dates and cities). There are ample opportunities to network with other delegates during coffee breaks and at the sit-down lunch.
Classroom Training Courses

Virtual-LIVE (WEBEX)

For those who prefer undertaking LIVE training remotely, PDP’s virtual courses allow delegates to interact directly with the trainer and to participate in group activities, mirroring the typical structure of Classroom sessions.
Virtual Training Courses


PDP’s eLearning courses are facilitated via a dedicated learning platform using videos, supplementary documentation and multiple choice self-assessment questions. The content can be viewed at any time allowing delegates to train around other commitments. Find out more information on PDP’s eLearning courses.

















Cybersecurity for Data Protection Professionals


Course Overview:

Breaches of information security are consistently one of the top two reasons for data protection regulator enforcement action. And fines for breaches of security are usually higher than for other types of breaches.

With mandatory breach notification under the GDPR and the significant uplift in potential monetary penalties, compliance professionals need to be suitably empowered with cybersecurity knowledge and awareness to assist their organisations to both mitigate ongoing data security risks and to deal with personal data breaches. It is also useful for compliance professionals to have a basic knowledge of cybersecurity terminology to facilitate effective communications with IT Team members.

This session is prepared specifically in the context of the GDPR and the objective of compliance professionals dealing more assuredly and knowledgeably with cybersecurity within their organisations. The session addresses:

  • what exactly cybersecurity means and encompasses
  • threats, vulnerabilities and risk from a security perspective
  • comparing and contrasting “risk” in security, and data protection under the GDPR
  • risk analysis and management from a security and data protection standpoint
  • cryptography as a privacy tool: encryption, at rest and in transit; hashing and salting
  • managing identity and authentication, security operations
  • security baselines: including ISO 27001 and Cyber Essentials
  • introduction to malware: botnets, ransomware, Denial of Service (and DDoS), Advanced Persistent Threats (APTs)
  • personal data breach / incident management and crisis management
  • business continuity planning and disaster recovery
  • data breach simulations

No technical knowledge is required in order to attend this session. A basic working knowledge of data protection legal requirements would be useful. Delegates with limited data protection knowledge may find it helpful to attend Data Protection Essential Knowledge Level 1 before attending this training course.


Course Trainer

Andrew Gaillie

Andrew Gaillie

Trainer's biography
and other courses
by this Trainer

Dan Whitehead

Dan Whitehead
Senior Associate
Hogan Lovells

Trainer's biography
and other courses
by this Trainer

Upcoming Training Dates
Virtual-LIVE (Teams)Thursday, 03 October 2024


- Classroom - £595.00 plus VAT
- Virtual-LIVE (WEBEX) - £495.00 plus VAT
- eLearning - £395.00 plus VAT

Additional Information:

- Classroom/Virtual-LIVE - 10.00am to 4.00pm
- eLearning - on-demand training available immediately

Discounts available:
Classroom / Virtual-LIVE:
10% discount for additional delegates for this course when booked together

20% discount for additional delegates booked together (up to 5). Group Licences also available

Who should attend:
Compliance Officers, Data Protection Officers, FOI Officers, Information Governance Personnel, Human Resources Managers, Company Secretaries, and others.



Practitioner Certificate in Data Protection (PC.dp.)


Practitioner Certificate in Freedom of Information (PC.foi.)




View training courses by:


Course Testimonials

“The topics covered in this course were interesting and informative and were at the right depth and relevance for a data protection professional who is not technically qualified. There was a good balance between theoretical and practical. This has provided some really useful information.”
Tracy Landon
Nottingham Trent University

“Excellent resource. Really helpful course, explaining clearly, with plenty of advice and help to ensure protection of your organisation.”
Carol Nichol
Bible Society

“The course was very good. The eLearning platform was very easy to use.”
David Lockyer
Bevan Brittan

“I found the eLearning course very informative and useful for someone (like me) who doesn't have a great deal of IT knowledge and needs to be able to integrate the legal and technical perspectives of cyber risk. It was easy to access and complete remotely. I did it one module at a time at my own pace.”
Debra Sullivan

“I really enjoyed the eLearning course and being able to do it at home was a great benefit. It meant that I could work through it at my own pace and dip in and out when I was able to.”
Ruth DH
Independent Office for Police Conduct

“Very informative course explaining a lot of the jargon used in this field. It was helpful that the learning could be completed across a number of sessions providing an opportunity to digest.”
Leigh Fyson

“I enjoyed the eLearning course, it was informative and I liked the flexibility that eLearning provides.”
Jo Mackness

“The eLearning course was good. I found the mixture of reading, video and self-assessment very useful.”
Shakeela Williams