Risk assessment in the age of the General Data Protection Regulation

When: 18th Oct 2017, 16:45 - 18th Oct 2017, 20:15
Where: Basingstoke Country Hotel, Scures Hill, Nately Scures, Basingstoke, RG27 9JS
Town/City: Basingstoke
Price: Free to both ISACA and BCS Members, £20 for non-members
Further Information: Further Information

Michael Barwise BSc, CEng, CITP, MBCS, M Inst ISP, FRSA


This event is organised by ISACA Winchester Chapter 212 and offered to BCS members in association with BCS Hampshire Branch.

Event Running Order:
18:45 - 19:00 - Delegate Networking
19:00 - 20:00 - Chapter Presentation
20:00 - Close - Q&A, Chapter AOB and Delegate Networking


This highly interactive session will take you on a journey of discovery from the status quo to the changes necessary under the forthcoming General Data Protection Regulation (GDPR). Supported by dramatic real-world examples, the session will make use of discussion and group exercises to explore the concept of risk and alternative approaches to assessment of consequence and likelihood, and will introduce a new model of the risk management obligation under GDPR.

About the speaker:

After over a decade as a systems engineer designing and implementing mission critical automation for aerospace, defence, utilities and ecology research, Michael made a transition into business information security consulting at the time the public web was first becoming commercialised. For the last fifteen years he has specialised in corporate information risk management, particularly assisting clients from multi-national scale downwards to implement risk assessment methods that reliably reflect the realities of the information risks to which they are exposed.

Although not a lawyer, Michael has practical experience of compliance with the UK Data Protection Acts as far back as 1984 and for the last five years has kept in close touch with the evolution of the General Data Protection Regulation.

Ground rules:

Due to the potentially sensitive nature of some of the information that may be introduced in discussion, the Chatham House Rule ("When a meeting, or part thereof, is held under the Chatham House Rule, participants are free to use the information received, but neither the identity nor the affiliation of the speaker(s), nor that of any other participant, may be revealed") will apply, and no recording, whether by photograph, audio or video will be allowed.

Further information