A portrait of Rebecca Herold

Rebecca Herold & Associates, LLC

Your trusted source for effective information security,
privacy and compliance tools, education and consulting.
The Privacy Professor

Speaking Events

2020 Events
May 21 Speaking at the Contact Center Association of the Philippines (CCAP) Privacy Summit.
2019 Events
April 19 2 p.m. eastern: Third Party Management: Ensuring Data Privacy Compliance: Preventing External Vendor Breaches, a 1- hour ASAE online class
April 23 Noon eastern: Virtual Roundtable: Translating Data Science, Data Ownership and Security, 90-min online event
May 7 Kansas City: Privacy Impact Assessments: Effective Tools to Identify and Mitigate Security and Privacy Risks, a 1-day SecureWorld PLUS class.
May 8 Kansas City: Luncheon Keynote: Prevent Nightmares in the IoT
June 12 Chicago: Privacy Impact Assessments: Effective Tools to Identify and Mitigate Security and Privacy Risks, a 1-day SecureWorld PLUS class.
September 5 Des Moines, Iowa: Lunch keynote, "Corral Your Data or You'll Stampede Over Privacy," at FutureCon Des Moines CyberSecurity Conference.
September 12 Costa Mesa, California: Keynote address, "Strategic Security Moves to Win Emerging Privacy Challenges," at 34th Annual SoCal Security Symposium, hosted by ISSA Orange County.
October 24 & 25, 2019 Luxembourg City, Luxembourg: Giving two talks at PwC Cybersecurity Day and then a half-day workshop the next day.
2018 Events
Jan 5 Guest on Leadership without Borders radio show to discuss "Big Data and Compliance, What Leaders Need to Know" with host Kimberli J. Lewis. Follow the link to tune in and access the post-show.
April 17 Providing identity theft information at Compass Financial in Des Moines, Iowa at their free, public event.
April 24 Teaching online GDPR Compliance MasterClass for IT GRC Forum
April 26 Teaching ISACA ILLOWA Chapter 1-day ISACA ILLOWA Spring Seminar on Privacy Management & Privacy Impact Assessments (8 CPEs) at the ProCircular facilities in Coralville, Iowa.
May 3 Providing identity theft information at Compass Financial in Des Moines, Iowa at their free, public event.
May 30-31 Giving Keynote SecureWorld, Atlanta, Georgia.
June 26 Hosting online seminar, "Practical Steps to Scale Your Vendor Risk Management Program," IT GRC Executive Forum.
July 13 Giving keynote, Electric Grid Security, at the Central Iowa Power Cooperative (CIPCO) IT Users Group in Des Moines, Iowa.
July 20 Presenting online session, "Improve Your Cybersecurity: Work With Vendors to Protect Data," for ASAE.
September 5 Giving keynote, "Understanding the Privacy Impact of Cloud Services & Social Media," at Spotlight on Security Speaker Series hosted by ISSA, ISACA, Women in Security, netskope and Sprint. Event is in Overland Park, Kansas.
October 1 NSBA Cybersecurity Webinar, 1 p.m. eastern. Event will address questions on cybersecurity, major computer chip defects and the growing pains of the 5G network.
October 10-11 Giving keynote at SecureWorld Dallas in Texas.
October 25-26 Giving two talks at PwC Cybersecurity Day and then a half-day keynote the next day , in Luxembourg City, Luxembourg
Sept 19-20 Giving keynote and sessions at Data Privacy Asia, Manila, Philippines.
November 7-8 Giving keynote at SecureWorld Seattle in Washington.
December 13 Speaking about privacy at the Iowa Infragard December meeting, 8:30 a.m. central at the Farm Bureau facilities in West Des Moines.
2017 Events
Jan 5 Formal signing ceremony by Iowa Governor Branstad for the official Iowa Data Privacy Day proclamation, Iowa Capitol, Des Moines.
April 4 Giving speech, "Fraud 2017 - Protecting Your Business From Email Attacks," to attendees of the BBB Fraud Program meeting in Omaha, NE.
April 18 Giving speech, "Don't Let Third Parties Bring Down Your Business: Effective Vendor Management," to attendees of ISSA Minnesota Chapter Meeting, St. Paul.
May 23 Giving webinar, "Strategies for Effective 3rd Party Risk Management" sponsored by IT GRC Forum.
June 14 Giving webinar, "Building a Framework for Data Privacy and Protection in the Cloud," sponsored by IANS Research
July 27 From 1:00 p.m. to 3:30 p.m. EDT: Co-Chair of the The Internet of Medical Things: Balancing Benefits with Risks, hosted by the BioPharmaceutical Research Council, Princeton, NJ.
August 15 Using the ISACA Privacy Principles to Perform a GDPR PIA, webinar hosted by ISACA.
Sept 13 SecureWorld Expo keynote, Detroit, MI.
Sept 21 Webinar, Don't Let Third Parties Bring Down Your Business: Effective Vendor Management, hosted by AHIA
Sept 28 Webinar, Using the ISACA Privacy Principles to Perform a GDPR PIA, hosted by ISACA.
Oct 7 Are you ready for 2018's compliance firestorm? Hosted by CSO Australia and sponsored by ISACA
Oct 11 Private Executive Briefing on healthcare security and privacy in the Internet of Medical Things in northern Rhode Island.
Oct 24 Webinar, Risk Management - Third Party Vendors, hosted by ASAE
Oct 25 Leading a webinar, A Data Security Survival Guide in an Interconnected World, hosted by the IT GRC Forum
Dec 11 Privacy Piracy Radio Show - Discussion on privacy breaches, the legal and business impacts and what needs to be done to be prepared. Listen at Privacy Piracy (88.9 FM and www.kuci.org).
Dec 13 IEEE - December 13 (US) / 14 (Australia) - Panel member for From Wearables to Implantables that Measure and Enhance Human Behaviour: What can we do already? Where are we headed? at the IEEE Life Sciences Conference. (I will be attending remotely.)
Dec 14 ISSA - December 14, Noon to 1 p.m. Eastern, Webinar: Lessons Learned and Recovery from Breaches
2016 Events
Feb 15 & 16 (Two Live Privacy & Security Workshops) Alaska Surveying & Mapping Conference, Anchorage, Alaska
Mar 16 (Privacy Training) The Conference that Counts, Albany, New York
April 30 - May 1 (Live Presentation) 2-day workshop, "Creating a Privacy Program using ISACA's Privacy Principles," ISACA, New Orleans
May 2 (Live Presentation) PIA: Highway to Hell or Stairway to Heaven?
July 28 (Live Presentation) Internet of Medical Things conference, Princeton, New Jersey
Oct 24 - 26 (Live Presentation) "Vendor Management," Privacy + Security Forum, Washington, D.C.
Nov 9 - 11 (Live Workshop) "Going Digital? Think Privacy Impact and Security Design," Data Privacy Asia Conference, Singapore
2015 Events
Nov 3 Session at the ISACA EuroCACS Conference in Copenhagen, Denmark: 6 Ways PIAs Can Improve Privacy Programs
Nov 3 Session at the ISACA EuroCACS Conference in Copenhagen, Denmark: Women in IT, Information Security & Privacy
2014 Events
April 9 & 10 Attending the NIST Privacy Engineering Workshop in Gaithersburg, VA, and will be on the practitioner's panel
April 30 Conducting a workshop for the ISACA North America CACS conference in Las Vegas
May 1 Presenting a session about privacy auditing and metrics at the ISACA North America CACS conference in Las Vegas
May 12 Conducting a workshop for Medical Device Security and Privacy at the 10X Medical Device Conference in Minneapolis
May 19 Presenting a HIPAA session at the Long Term Care Solutions Summit in Kansas City
June 16 Providing the keynote about how to engineer privacy controls into the Internet of Things at the International Information and Computer Security Conference in Bogotá, Colombia
Nov 26 Security Culture Hangout!
2013 Events
January 30 IAPP CIPP Foundation course at the Microsoft Bellevue, WA, campus (open to public registration)
January 31 IAPP CIPP/IT course at the Microsoft Bellevue, WA, campus (open to public registration)
March 5 IAPP CIPP Foundation course (just before the Global Privacy Summit) in Washington, DC
March 6 IAPP CIPP/US course (just before the Global Privacy Summit) in Washington, DC
May 13 Secure 360 Pre-Conference class, "Vendor Information Security and Privacy Management" in St. Paul, MN
Sept. 12 & 13 Des Moines, IA: Teaching IAPP CIPP Foundations & CIPP/US classes
Sept. 20 Santa Clara, CA: Teaching a IAPP CIPM class
Oct. 2 IAPP Privacy Academy roundtable with friends Jules Polonetsky and Megan Hertzler, "Too Smart for Our Own Good? Privacy in the Information Age"
Oct. 8 10th Annual Iowa Homeland Security Conference; "Five Most Common Overlapping Privacy and Information Security Areas"
Oct. 16 Indianapolis, IN: Teaching IAPP CIPM class
Oct. 30 Warwick, RI: Security Awareness Day at Community College of Rhode Island; "Where Do You Draw the Creepy Line? Privacy, Big Data Analytics, and the Internet of Things"
Dec. 5 Phoenix, AZ: Teaching IAPP CIPM class
2012 Events
March 6 The IAPP Privacy Foundations CIPP Training in D.C
April 2 & 3 The Seattle ISACA-Puget Sound Chapter Spring Seminar Information Security and Privacy Collaboration 2-day Training Class
May 8 The St. Paul, MN, Secure360 Conference
July 18 Seattle: IAPP CIPP Foundations Class
July 19 Seattle: IAPP CIPP/IT Class
Sept 11 St. Louis: Secure World Expo Keynote, "Meeting Privacy Challenges at the Speed of Technology and Business"
Sept 19 San Francisco: Secure World Expo Keynote, "Meeting Privacy Challenges at the Speed of Technology and Business"
Oct 9 IAPP Privacy Academy 2012 CIPP Certification Foundation Training, San Jose
Oct 10 IAPP Privacy Academy 2012 CIPP/US Certification Training, San Jose, CA
2011 Events
June 22 Free online webinar: 10 Risk-Reducing Actions for Mobile HIPAA/HITECH Compliance
July 13 The Global Fax Summit, "Demystifying Compliance", Tucson, AZ.
Oct 5 - 6 SecureWorld, Detroit, MI
2010 Events
Aug 31 HIPAA's New Proposed Rule: Prepare for Changes to Privacy, Security and Enforcement Regulations
Audio Conference:10-11:30am Pacific / 1-2:30pm Eastern or On-Demand
Sept 29 Public briefing of the NIST Smart Grid privacy group activities
California Public Utilities Commission Office 10:00am - 4:00pm
Oct 27 Information Security and Privacy: Where are We Going and How Can We Measure Success? Top 20 Trends Where Information Security, Privacy and Compliance Must Collaborate
1-Day Pre-Conference Class; CSI Annual Conference
Gaylord National Resort and Convention Center National Harbor, MD 20745
Oct 29 Monitoring What You Do at Home: Privacy and Security Challenges of the Smart Power Grid
CSI Annual Conference (4:00pm session)
Gaylord National Resort and Convention Center
National Harbor, MD 20745
Nov 9 Information Security Incident: Privacy Breach or Not A Privacy Breach?
Central Iowa Joint ISACA/IIA Meeting
Des Moines, Iowa
Dec 1 Social Media Marketing: Avoiding Privacy Pitfalls
Des Moines American Marketing Association
Des Moines, Iowa
Dec 8 Conducting a Privacy Impact Assessment
1-day class sponsored by the Kalamazoo Michigan Infragard chapter
Kalamazoo, Michigan
2009 Events
January 14 Minneapolis ISACA, "Audit's Role in Privacy Breach Response"
February 23 Pittsburgh, PA, Carnegie Mellon University Cylab
"The Convergence of Information Security, Privacy and Compliance"
March 17 Iowa ISACA, "The Convergence of Information Security, Privacy and Compliance"
April 13 - 15 Omaha, NE, 2009 Infotec Conference
May 7 and 8 Columbus, OH, 2009 Central Ohio InfoSec Summit
"The Convergence of Information Security, Privacy and Compliance"
May 12 - 13 St. Paul, MN; Secure360; "The Convergence of Information Security, Privacy and Compliance"
Aug 12 - 13 Houston, TX, ISSA sponsored 2-day class, "Security and Privacy: Tools, Trends and Techniques"
Sept 16 Boston, MA, IAPP Privacy Academy 2009, "The Road Less Unraveled: Integrated Privacy, Security and Response Planning to the Data Breach"
Sept 18 Boston, MA, IAPP Privacy Academy 2009, "Internal Audit's Role in Responding to Privacy Breaches"
During Oct. 24 - 30 National Harbor, MD, CSI 2009, "Unified Information Security and Privacy Management"
Nov 23 Des Moines, IA; ISSA, "The Convergence of Information Security, Privacy and Compliance"