"The level of dialogue on privacy issues among the community who received the certification unquestionably has been elevated."
How Oracle Made Privacy a Shared Business Objective and Bolstered Its Brand Repuation
Oracle, the world’s largest enterprise software company, has always made information security and privacy a top priority. But with the rapidly changing privacy landscape, Oracle quickly recognized the need to expand privacy knowledge across the organization. They turned to the IAPP to bring world-class privacy training and certification to more than 100 of its information security managers.
CHALLENGES
Integrate Privacy into the Organizational Culture
In order to better serve their clients, employees at the OPC are supported in the development of their knowledge of personal information protection issues through a variety of different formal and informal training opportunities.
Oracle has had a privacy officer for 15 years, and has an established internal privacy training program, but with privacy growing in importance as a key business driver for compliance, risk management and market leadership, Oracle recognized the need to invest in more in-depth privacy education for managers across all business functions—not just the core privacy team—to more deeply embed privacy knowledge into the fabric of the organization.
SOLUTION
Create Information Protection Champions throughout the Company
Oracle identifed a group of information security managers—the people who develop and interact with its systems on a daily basis—and turned to the IAPP to provide training to help them become “information protection champions.”
During Oracle’s annual workshop for its information security managers, IAPP Professional Privacy Faculty trained more than 100 Oracle employees in the IAPP’s Certifed Information Privacy Professional (CIPP) programs. More than 60 went on to earn their CIPP certifcation.
RESULTS
Privacy as a Shared Business Objective, Bolstered Brand Reputation
The IAPP training and certification has already had a positive impact. Alexis Goltra, Oracle’s chief privacy ofcer and assistant general counsel for privacy and security, is already seeing the results. “The level of dialogue on privacy issues among the community who received the certifcation unquestionably has been elevated. There are now more people sensitized to privacy in their organizations and lines of business, and that means a much greater likelihood of spotting and addressing issues before go-live, when they’re easier to fix.”
Externally, Goltra sees the IAPP training and certification as a differentiator in the marketplace. “There’s no question that the IAPP certification has become an industry standard, and anyone hiring a privacy professional expects to see that credential. It signals a core understanding of the issues that is an immediate differentiator for an applicant.”
NEXT STEPS
Continued Education and Certification
Oracle is planning another live training/testing event at its annual European workshop and has plans to roll out online training to reach employees in India, Asia and Latin America.
Goltra notes that Oracle sends staf from its legal, information security and HR groups to IAPP events nationwide in order to continue embedding privacy more deeply into the culture of the organization.
Download a PDF version of this case study here.
Find out how you can move your privacy program forward with IAPP certification and training. For more information, contact us at sales@iapp.org or +1 603.427.9200.
