Date(s) - 16/10/2017 - 20/10/2017
9:00 am - 4:30 pm
The five day course is divided into two parts.
The first part covers the ISO/IEC 27032:2012, which provides guidance for improving cyber security and drawing out the distinctive aspects of the activity and its dependencies on other security domains, such as internet security, network security, application security, and information security as foundation. Using the advice and guidelines from the standard will assist organisations to develop cyber security resilience capabilities against cyber security threats.
The second part covers implementing NIST Cyber Security Framework 1.1. This framework is a set of principles, ideas, etc. that one may use when forming decisions and judgments. It provides a way to organize, conduct, and drive issues about cyber security goals and improvements for organisations. However it does not prescribe any specific risk management process, or specifies any priority of action.
The course consists of a mix of presentation, discussion and exercises based on real-world examples.
Cyber Security per ISO/IEC 27032:2012
- Cyber Security Objectives and Roles
- Difference between Information and Cyber Security
- Cyber Security Governance and Capabilities
- Asset and Risk Management
- Secure Development
- Network Monitoring and Incident Response
- Server, Application and End-User Controls
- Information Sharing and Coordination
NIST Cyber Security Framework 1.1
- Core Functions and Categories
- Implementations Tiers
- Review of Security Practices
- Cyber Security Program
- Communication with Stakeholders
Completion of this course will enable students to:
- Provide advice and guidance on cyber security issues to help protect an organisation against cyber security threats
- Explain the relationship of cyber security to other forms of security, and draw together these domains for the organisation’s maximum benefit
- Define stakeholders and provide a description of their roles with regards to cyber security
- Understand the framework for resolving cyber security issues through collaboration
This course is aimed at students with (future) roles like:
- Project managers, consultants and team members implementing cyber security resilience measures
- (Security) Risk managers
- CxO and senior managers
- Auditors requiring more cyber security insight
- General understanding of common business processes.
- Some past exposure to cyber, information or IT security helpful, but not required.
Examination and Certification
- The course ends with a thee hour written essay-style exam on the last day available in multiple languages.
- This course has been designed by SoftQualM and partners, who also mark the exam and issue the Cyber Security Professional certification in accordance with ISO/IEC 17024:2012.
- Exam and first year certification fees are included in the course fees.
Reservations cannot be made anymore for this course.