Given the interconnectedness of privacy and security, it is critical that engineers address security gaps that could lead to privacy harm. It is also useful to have set milestones to help measure the maturity of a company’s privacy offering. Building on governance and tooling, this part will help create a professional and mature privacy engineering offering.
Chapter 10 will take a technical deep dive into security incidents, their privacy impact, and how to remedy them. This chapter combines privacy and security into a data protection rubric, much like GDPR does.
Chapter 11 helps engineers plan maturity models for their privacy program. As privacy engineering becomes a discipline along the lines of software development, enumerating core capabilities and their completeness is vital. This chapter will provide a framework that engineers are otherwise too oversubscribed to build for themselves.