Task: Determine Security Training Requirements
It is critical to understand the Client's requirement to impart security trainings to Capgemini personnel, in terms of who should be trained and the curriculum of the training.
Relationships
RolesPrimary Performer: Additional Performers:
Outputs
    Process Usage
    Main Description

    The Client may require personnel to be trained on certain security standards, Client-specific security requirements, security policy and procedures. For this, the Information Security And Compliance Lead must define an account specific security and compliance training curriculum.

     

    The training curriculum would typically include:

     

    • Awareness of Client’s security standards
    • Overall security and compliance framework and controls
    • Specific access control processes
    • Data security and privacy processes
    • Industry specific training, for example life sciences regulatory compliance, etc.
    • Security breach (incident) management process
    • Systems and tools required for security and compliance
    • Security related key performance indicators (KPIs).

     

    The Information Security And Compliance Lead must ensure that the personnel performing delivery roles have been appropriately trained on security and compliance requirements to perform their duties, in line with the Client’s security policies and standards along with Capgemini’s contractual and regulatory obligations around security and compliance. 

    More Information
    Guidelines

    Copyright © 2017 Capgemini. All Rights Reserved.