Basing this off a few very interesting people I've interacted with in the Information Security field wrt Healthcare) as coop student then some contract work.
Usually they tended to be either Law or Infosec folks who ended up in roles where they did consulting or setting up policies for companies. Then with experience becoming SMEs with regards to Privacy and either operating as independent consultants or working with governments/companies as Privacy officers/commissioners etc...
As far as I know most of them didn't have much in common as far as certs or specific educational background it was mostly a mix of similar work experiences as well as being in the same conference circuits.
Someone with more experience should probably address this :)
Usually they tended to be either Law or Infosec folks who ended up in roles where they did consulting or setting up policies for companies. Then with experience becoming SMEs with regards to Privacy and either operating as independent consultants or working with governments/companies as Privacy officers/commissioners etc...
As far as I know most of them didn't have much in common as far as certs or specific educational background it was mostly a mix of similar work experiences as well as being in the same conference circuits.
Someone with more experience should probably address this :)