技能档案

GDPR / 152-FZ Compliance

Personal data, consent, right to erasure, Data Protection Officer, DPIA

Security Compliance

角色数

包含此技能的角色

级别数

结构化成长路径

必要要求

其余 2 个可选

Security

Compliance

2026/3/17

选择当前级别并对比期望。下方卡片显示晋升所需掌握的内容。

各级别期望

表格展示从初级到首席的技能深度变化。点击行查看详情。

角色	必要性	描述
Application Security Engineer	必要	Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
QA Security Engineer		Understands basic GDPR/152-FZ compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
Security Analyst	必要	Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes common code vulnerabilities.

角色	必要性	描述
Application Security Engineer	必要	Applies GDPR/152-FZ compliance in application security: conducts privacy-focused code reviews, implements data minimization checks, and validates consent management flows. Uses SAST tools to detect PII exposure and logging violations.
QA Security Engineer		Applies GDPR / 152-FZ Compliance in daily work. Conducts security code review. Uses scanning and analysis tools.
Security Analyst	必要	Applies GDPR/152-FZ compliance in security analysis: monitors data processing activities for regulatory violations, conducts DPIA assessments, and validates data retention policies. Uses DLP tools to detect unauthorized PII transfers.

角色	必要性	描述
Application Security Engineer	必要	Designs privacy-by-design architecture aligned with GDPR/152-FZ: data classification systems, automated PII discovery, and pseudonymization pipelines. Implements privacy threat modeling (LINDDUN) and conducts compliance audits of application stacks.
QA Security Engineer	必要	Designs compliance testing strategy for GDPR/152-FZ: automated privacy regression tests, data subject rights verification, and consent flow validation suites. Implements continuous compliance monitoring in CI/CD with privacy-focused test scenarios.
Security Analyst	必要	Designs security solutions with GDPR / 152-FZ Compliance. Conducts threat modeling. Integrates security practices into SDLC. Mentors the team.

角色	必要性	描述
Application Security Engineer	必要	Defines GDPR/152-FZ compliance strategy for application security: establishes privacy review processes, data processing agreement templates, and breach notification procedures. Coordinates DPO collaboration and cross-team privacy training.
QA Security Engineer	必要	Defines security strategy with GDPR/152-FZ compliance. Establishes security policies. Coordinates incident response. Trains teams.
Security Analyst	必要	Defines GDPR/152-FZ compliance monitoring strategy: establishes data processing registers, incident classification criteria, and regulatory reporting workflows. Coordinates with legal team on cross-border data transfer assessments and supervisory authority interactions.

角色	必要性	描述
Application Security Engineer	必要	Defines enterprise privacy and GDPR/152-FZ compliance strategy. Shapes organizational privacy architecture spanning data governance, consent management, and cross-border transfer frameworks. Represents company in regulatory discussions and industry privacy initiatives.
QA Security Engineer	必要	Designs GDPR compliance testing strategy: automated data mapping verification, consent mechanism testing, right-to-deletion validation, data breach detection. Defines privacy-by-design testing framework.
Security Analyst	必要	Defines enterprise data protection strategy aligned with GDPR/152-FZ and emerging privacy regulations. Shapes organizational compliance framework spanning multiple jurisdictions. Drives privacy-by-default culture and represents organization in regulatory community.

Junior 3 要求

Application Security Engineer
必要

Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
QA Security Engineer

Understands basic GDPR/152-FZ compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
Security Analyst
必要

Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes common code vulnerabilities.

Middle 3 要求

Application Security Engineer
必要

Applies GDPR/152-FZ compliance in application security: conducts privacy-focused code reviews, implements data minimization checks, and validates consent management flows. Uses SAST tools to detect PII exposure and logging violations.
QA Security Engineer

Applies GDPR / 152-FZ Compliance in daily work. Conducts security code review. Uses scanning and analysis tools.
Security Analyst
必要

Applies GDPR/152-FZ compliance in security analysis: monitors data processing activities for regulatory violations, conducts DPIA assessments, and validates data retention policies. Uses DLP tools to detect unauthorized PII transfers.

Senior 3 要求

Application Security Engineer
必要

Designs privacy-by-design architecture aligned with GDPR/152-FZ: data classification systems, automated PII discovery, and pseudonymization pipelines. Implements privacy threat modeling (LINDDUN) and conducts compliance audits of application stacks.
QA Security Engineer
必要

Designs compliance testing strategy for GDPR/152-FZ: automated privacy regression tests, data subject rights verification, and consent flow validation suites. Implements continuous compliance monitoring in CI/CD with privacy-focused test scenarios.
Security Analyst
必要

Designs security solutions with GDPR / 152-FZ Compliance. Conducts threat modeling. Integrates security practices into SDLC. Mentors the team.

Lead / Staff 3 要求

Application Security Engineer
必要

Defines GDPR/152-FZ compliance strategy for application security: establishes privacy review processes, data processing agreement templates, and breach notification procedures. Coordinates DPO collaboration and cross-team privacy training.
QA Security Engineer
必要

Defines security strategy with GDPR/152-FZ compliance. Establishes security policies. Coordinates incident response. Trains teams.
Security Analyst
必要

Defines GDPR/152-FZ compliance monitoring strategy: establishes data processing registers, incident classification criteria, and regulatory reporting workflows. Coordinates with legal team on cross-border data transfer assessments and supervisory authority interactions.

Principal 3 要求

Application Security Engineer
必要

Defines enterprise privacy and GDPR/152-FZ compliance strategy. Shapes organizational privacy architecture spanning data governance, consent management, and cross-border transfer frameworks. Represents company in regulatory discussions and industry privacy initiatives.
QA Security Engineer
必要

Designs GDPR compliance testing strategy: automated data mapping verification, consent mechanism testing, right-to-deletion validation, data breach detection. Defines privacy-by-design testing framework.
Security Analyst
必要

Defines enterprise data protection strategy aligned with GDPR/152-FZ and emerging privacy regulations. Shapes organizational compliance framework spanning multiple jurisdictions. Drives privacy-by-default culture and represents organization in regulatory community.

👁 关注 ✏️ 建议修改

正在加载评论...