Related Posts
Red red red
Additional Posts in Privacy Law
Anyone take the CIPM recently? How was it?
Can you incorporate SCCs by reference in a DPA?
New to Fishbowl?
Download the Fishbowl app to
unlock all discussions on Fishbowl.
unlock all discussions on Fishbowl.




Do you really need the CIPM? 🤔
They have the BoK and exam topics, but my approach to the CIPP/US was to fill out the BoK (which is really just a skeleton) with substance. That approach worked for me, so I thought I’d do the same with CIPM
Enthusiast
It’s a good approach. The US is one of the hardest next to the A, so you should be fine if you already have 2/3y experience; especially if you already have some management background.
They say 30h, but pls bear in mind that’s usually low.
My suggestion is 60h min, optimal to 90h if you want to include 2-3 books.
As a minimum I would recommend the CIPM book and Strategic Privacy by Design due to importance of PdB to implement Privacy at depth.
Something to consider future wise is CIPT too.
Im a military JAG doing cyber law work and trying to break into the private sector, so I’m trying to gain an understanding and show as how private sector privacy works. There’s no replacement for experience, but this is the closest proxy…lots of job postings have cited CIPM…
Thanks Oak Pointe 1! Appreciate the perspective, thoughts, and encouragement!
I mean, you're an attorney already. Do you manage the daily privacy operations? All certs are window dressing, if you have privacy experience and perform the duties already, it's not necessary.
If anything, put it in progress on your resume.
The study guide is solid, but even after you obtain it, it's not going to help that much and by then you'll still have experience. No need to pay out of pocket for it either.
What area of cyber law? A cloud cert may serve you better.
Depends on the knowledge gaps or niche areas you want to grow in. I usually look at the BOK and then go from there. How does it align with my goals and my current background as well as future? I also consider how many cert bodies you want to deal with. Less is better IMO, so if you have a cert through IAPP then stick with that. all just depends on you IMO.
Iapp website has it, or are you looking for something else?
^open to critiques on this perspective, but that’s how I see it…