Secure Big Data architectures and ensure regulatory compliance (Law 25, ISO 27001)
This intensive three-day training course provides a comprehensive understanding of the challenges associated with big data and data security. It covers big data architectures, the risks associated with managing massive amounts of data, current regulations (Bill 25, ISO 27001), and best practices in governance and data protection. Hands-on workshops allow participants to apply the concepts to real-world scenarios.
Is it for you ?
IT recruiters, security or compliance managers, data analysts/data engineers, IT project managers, HR managers involved in data management
Prerequisites
• Basic knowledge of information systems or cybersecurity.
• Awareness of personal data protection issues.
• Experience in an IT or HR environment.
What You'll Walk Away With
- ✓ Identify risks and vulnerabilities specific to Big Data architectures (Hadoop, Spark, NoSQL)
- ✓ Implement security controls including encryption, authentication, and access management
- ✓ Establish data governance with classification policies and lifecycle management
- ✓ Assess compliance with Law 25 and define corrective action plans through audit simulation
- ✓ Deploy monitoring, anomaly detection, and data security auditing mechanisms
Training content
1 Introduction to Big Data
- Definition and characteristics (Volume, Velocity, Variety, etc.)
- Use cases in businesses
2 Big Data Architecture
- Hadoop, Spark, NoSQL
- Distributed storage and parallel processing
3 Security issues in Big Data environments
- Specific vulnerabilities
- Complexity of access management
Workshop 1: Mapping data flows in a Big Data architecture
4 Data security and compliance
5 Regulatory frameworks
- Law 25: principles, corporate obligations, consent, transparency, right to be forgotten, incident notification
- ISO 27001: security requirements
- Comparative overview with other North American frameworks (e.g., PIPEDA at the Canadian federal level)
6 Data governance
- Roles and responsibilities
- Data classification policy
- Data lifecycle management
Workshop 2: Assessing compliance with Law 25 using a fictional case study (internal audit simulation, identification of discrepancies, corrective action plan)
7 Implementation and best practices
8 Securing Big Data environments
- Data encryption
- Authentication and access control
- API and interface security
9 Monitoring and auditing
- Monitoring tools
- Anomaly detection
- Data security audit
Workshop 3: Implementing a security plan for a Big Data platform (including Act 25 requirements: impact assessment, technical and organizational measures, subcontractor management)
📌 Practical information
Our training sessions are offered in Montreal or Quebec City, in person or in a virtual classroom. Dates and locations are specified when you select your session below. If you have any questions, check out our FAQ.