Jason Edwards
Certified: The ISACA CDPSE Audio Course
Welcome to Certified: The ISACA CDPSE Audio Course. I’m going to guide you through the ideas and skills that sit behind the Certified Data Privacy Solutions Engineer credential, in a way that’s clear, exam-aligned, and grounded in how privacy actually works inside organizations. You can expect focused episodes that build your understanding step by step, from privacy governance and data life cycle thinking to privacy by design practices that hold up under real delivery pressure. We’ll keep the language straightforward, define terms in context, and connect each topic to the kinds of decisions yo...
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
Welcome to the ISACA CDPSE Audio Course 15.02.2026 0:58
Certified: The ISACA CDPSE Audio Course is an audio-first prep program built for working privacy and security professionals who need a structured path to the ISACA CDPSE credential without living in a textbook. It’s a strong fit for privacy program managers, GRC and risk leaders, security analysts moving into privacy work, and technologists who touch personal data and need to explain their decisio...
Episode 70 — Essential Terms: Plain-Language Glossary for Fast CDPSE Recall (Domains 1–4) 15.02.2026 12:17
This episode delivers a plain-language glossary of essential CDPSE terms, focusing on definitions you can apply immediately to scenario questions instead of memorizing formal phrasing. You’ll reinforce the vocabulary that drives correct choices, including how to talk about personal information, lawful bases and consent concepts, risk and assessment language, lifecycle controls like minimization an...
Episode 69 — Exam-Day Tactics: A calm mental model for triage, time, and confidence (Domains 1–4) 15.02.2026 12:20
This episode provides exam-day tactics built around a calm, repeatable mental model for triage and time management, so you can answer CDPSE scenario questions decisively without getting pulled into distracting details. You’ll learn how to quickly identify the domain and the underlying objective being tested, then filter answer choices by what is most defensible: clear ownership, actionable control...
Episode 68 — Promote accountability, fairness, and transparency across the full data life cycle (Task 19) 15.02.2026 13:40
This episode teaches how to promote accountability, fairness, and transparency across the full data life cycle, because CDPSE expects you to think about privacy outcomes as continuous obligations, not isolated checkpoints. You’ll learn how accountability shows up in ownership, decision trails, and evidence that controls work; how transparency becomes accurate, timely communication of collection, u...
Episode 67 — Create educational content and training that builds a privacy-aware culture (Task 18) 15.02.2026 11:13
This episode focuses on creating educational content and training that builds a privacy-aware culture, emphasizing outcomes that change behavior in the moments where privacy risk is created. You’ll learn how to design role-based training for product, engineering, support, marketing, and procurement, and how to connect training content to real decisions like data collection choices, logging standar...
Episode 66 — Advocate for privacy maturity improvements aligned to organizational objectives (Task 17) 15.02.2026 12:18
This episode teaches how to advocate for privacy maturity improvements that align with organizational objectives, because CDPSE scenarios frequently test your ability to drive change through realistic prioritization rather than idealized wish lists. You’ll learn how to assess current maturity in terms of governance, control coverage, evidence quality, and operational consistency, then identify imp...
Episode 65 — Build metrics that report privacy program performance in language leaders trust (Task 16) 15.02.2026 11:14
This episode explains how to build privacy program metrics that leaders trust, because CDPSE often tests whether you can measure performance in a way that supports governance decisions instead of producing vanity numbers. You’ll learn how to choose metrics that reflect control effectiveness and operational reality, such as request handling timeliness and quality, inventory and dataflow coverage, r...
Episode 64 — Advise on personal information classification so risk and controls stay consistent (Task 15) 15.02.2026 12:15
This episode teaches how to advise on personal information classification so the organization applies consistent risk logic and consistent safeguards across systems, teams, and vendors. You’ll learn how to set defensible classification criteria that account for identifiability, sensitivity, context, linkage risk, and potential harm, and how to avoid the common failure mode where teams label data d...
Episode 63 — Keep personal information inventory and dataflows current with durable processes (Task 14) 15.02.2026 12:44
This episode focuses on keeping personal information inventories and dataflow documentation current, because stale inventories are a root cause of missed risks, failed rights requests, and weak incident scoping, and CDPSE questions often reward answers that make documentation self-maintaining. You’ll learn durable mechanisms that keep records accurate, such as onboarding gates for new systems, cha...
Episode 62 — Track regulatory change, emerging threats, and PETs so the program stays current (Task 13) 15.02.2026 12:55
This episode teaches how to keep a privacy program current by tracking regulatory change, emerging threats, and privacy enhancing technologies, because CDPSE expects you to think beyond today’s controls and anticipate drift in obligations and risk. You’ll learn how to build an intake-and-triage process for changes, including identifying which updates matter, who owns interpretation, and how decisi...
Episode 61 — Evaluate information architecture choices that enable privacy by design outcomes (Task 12) 15.02.2026 13:02
This episode explains how to evaluate information architecture choices through a privacy engineering lens, because CDPSE scenarios often hide privacy failures inside “reasonable” architecture decisions like centralized lakes, shared identifiers, or broad event streams. You’ll learn how architecture patterns influence data minimization, purpose limitation, retention enforcement, and data subject re...
Episode 60 — Collaborate with stakeholders to resolve privacy compliance gaps and risk responses (Task 11) 15.02.2026 13:01
This episode teaches how to collaborate with stakeholders to resolve compliance gaps and select appropriate risk responses, because CDPSE often tests your ability to move from problem identification to coordinated, durable improvement. You’ll learn how to frame gaps in terms of control intent and evidence, then engage the right owners across legal, security, engineering, product, and operations to...
Episode 59 — Participate in incident management to address privacy impacts and drive remediation (Task 10) 15.02.2026 13:16
his episode focuses on participating in incident management with a privacy lens, emphasizing how to identify privacy impacts quickly, make defensible decisions, and drive remediation that prevents recurrence. You’ll learn how to scope personal information exposure when details are incomplete, how to assess harm and notification triggers based on data types and populations, and how to document acti...
Episode 58 — Evaluate vendor contracts, SLAs, and practices, then monitor for compliance evidence (Task 9) 15.02.2026 14:00
This episode explains how to evaluate vendors beyond marketing claims by reviewing contracts, SLAs, and actual operating practices, then setting up monitoring that produces ongoing compliance evidence. You’ll learn how to translate privacy requirements into contractual controls like purpose limits, onward transfer restrictions, breach notification timelines, deletion and return obligations, audit...
Episode 57 — Identify and assess privacy threats and vulnerabilities with repeatable rigor (Task 8) 15.02.2026 14:04
This episode teaches a repeatable method for identifying and assessing privacy threats and vulnerabilities so your conclusions are defensible, consistent, and actionable across teams and systems. You’ll learn how to define privacy threats in terms of harm pathways, such as unauthorized access, unintended disclosure, re-identification, inference, over-collection, and secondary use, and then map tho...
Episode 56 — Collaborate to ensure Privacy by Design is applied through build and rollout (Task 7) 15.02.2026 12:18
This episode focuses on collaboration patterns that make Privacy by Design real from early requirements through build, testing, deployment, and operational monitoring. You’ll learn how to work with stakeholders so privacy requirements are captured as engineering constraints, implemented as controls, and verified as part of release readiness, which is the mindset CDPSE exams target in “best action”...
Episode 55 — Integrate privacy principles into procedures and operational manuals people follow (Task 6) 15.02.2026 13:21
This episode teaches how to integrate privacy principles into procedures and operational manuals so people can actually follow them under time pressure, which is often what separates high-scoring CDPSE answers from generic “update the policy” responses. You’ll learn how to convert principles like minimization, purpose limitation, transparency, and accountability into step-by-step procedures for te...
Episode 54 — Perform PIAs and privacy-focused assessments without missing real-world impacts (Task 5) 15.02.2026 12:48
This episode explains how to perform PIAs and privacy-focused assessments in a way that captures real-world impacts, not just formal requirements, which is a core CDPSE skill when exam questions present incomplete facts and expect structured reasoning. You’ll learn how to scope an assessment based on processing purpose, data categories, populations affected, and system boundaries, then identify ha...
Episode 53 — Design and evaluate technical and operational controls for classification and life cycle (Task 4) 15.02.2026 14:35
This episode teaches how to design and evaluate controls that make data classification and life cycle governance real in day-to-day operations, because CDPSE scenarios frequently test whether you can move from principles to enforceable control choices. You’ll learn to connect classification to specific safeguards, such as access rules, encryption coverage, field filtering, retention enforcement, a...
Episode 52 — Advise on data life cycle policies so data governance reflects privacy reality (Task 3) 15.02.2026 14:07
This episode focuses on advising leaders and teams on data life cycle policies so governance reflects how systems actually collect, use, share, store, and delete personal information. You’ll learn how to evaluate whether policies are actionable, enforceable, and consistent across products and platforms, and how CDPSE questions often reward answers that connect policy language to technical and oper...
Episode 51 — Review programs for legal alignment, best practices, and data subject expectations (Task 2) 15.02.2026 18:48
This episode teaches how to review a privacy program for legal and regulatory alignment while also checking whether it matches best practices and real data subject expectations, which is a common CDPSE testing angle when questions ask what is “most effective” or “best next.” You’ll learn how to translate requirements into review criteria, then evaluate governance artifacts, control coverage, and o...
Episode 50 — Identify internal and external requirements that shape every privacy program decision (Task 1) 15.02.2026 18:37
This episode teaches you to identify and reconcile the internal and external requirements that drive privacy program decisions, because CDPSE frequently tests how you translate obligations into consistent, governable actions. You’ll learn how external drivers like laws, regulations, contracts, and industry expectations intersect with internal drivers like business objectives, risk appetite, archit...
Episode 49 — Spaced Retrieval Review: Privacy engineering decisions across stacks, controls, and data (Domain 4A-1 to 4C-5) 15.02.2026 18:54
This review episode strengthens rapid recall across Domain 4 by connecting infrastructure choices, operational controls, and privacy-enhancing techniques into a single engineering decision framework. You’ll rehearse how platforms, endpoints, connectivity, SDLC integration, and cloud-native patterns create or reduce privacy exposure, then tie those decisions to asset management, IAM, hardening, and...
Episode 48 — Detect AI and ML privacy pitfalls like inference, drift, and overcollection risks (Domain 4C-5 AI/Machine Learning (ML) Considerations) 14.02.2026 18:39
This episode focuses on privacy pitfalls that appear after AI and ML systems go live, including inference risks, drift-driven behavior change, and overcollection through “helpful” logging and feedback loops. You’ll learn how models can reveal sensitive information through outputs, how prompt and input data can become unintended data collection, and how monitoring designed for performance can accid...
Episode 47 — Address AI and ML privacy considerations before models ship to production (Domain 4C-5 AI/Machine Learning (ML) Considerations) 14.02.2026 18:33
This episode explains AI and ML privacy considerations in a way that maps to CDPSE objectives, focusing on what must be decided before a model ever reaches production. You’ll learn how training data sourcing, lawful basis, consent alignment, and purpose limitation apply to model development, and why “we only store embeddings” or “we removed names” is not enough if the underlying data remains perso...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.