risk3sixty white papers

Adopting the NIST Privacy Framework:

Managing and Enhancing Your Privacy Program

NIST Privacy Framework Whitepaper


The NIST Privacy Framework provides the ability for organizations to analyze key privacy objectives and clearly define their strategic approach to these objectives. In addition, by adopting the Framework, companies can position themselves to scale along with the growth of privacy regulation.

Privacy is a rapidly growing concern for businesses of all sizes. Whether facing questions from customers, business partners, or regulators, businesses must be able to adequately describe the steps they have taken to maintain the privacy of consumer data.

Frameworks such as the General Data Protection Regulation (GDPR) and ISO 27701 help define the major pillars of an enterprise privacy program. Yet, as additional privacy regulations are enacted, companies may lack a defined strategy to address new requirements and may fail to take a risk-based approach to their privacy programs.

Team Specialist

Phil Brudney


Philip leads Security, Privacy, and Compliance research and quality assurance at risk3sixty. He oversees privacy and attestation reporting and is the co-quality assurance manager for the assurance practice where he is responsible for ensuring each engagement meets risk3sixty’s rigorous quality standards in line with AICPA requirements. Phil leads development and peer review of thought leadership, research, and whitepapers. In addition, Phil acts as the Data Protection Officer (DPO) for a wide array of US based firms facing GDPR compliance.

Speak With An Expert

Let Us Know How We Can Help

Fill out the form and let us know what service you’re interested in; or ask any general question and we’ll get back to you as soon as possible.