Data, applications and communication associated with cyberspace are used as low-cost and effective IT resources by almost all organisations worldwide. With an increased reliance on the Internet comes a growing and persistent risk of being attacked and compromised, either by accident or with malicious criminal intent. Managing and mitigating this risk is now essential to the survival of all such organisations.
Knowledge of current cyber security standards, best practice and guidance documents.
Key requirements (outcomes) of an effective cyber security risk management strategy.
About the role and the importance of people, processes and technology in cyber security.
How to demonstrate cyber security assurance to stakeholders including your board, staff, partners and customers.
Why risk management is the core competence of cyber security management.
How ISO27001 provides a backbone for delivering cyber security risk management outcomes.
Why ISO22301 is essential to achieving cyber resilience in the event of a cyber security attack.
How cyber security integrates with IT governance best practice frameworks such as COBIT 5.
This course will prepare you for an examination on the last day of the training programme. Successful candidates will be awarded the Managing Cyber Security Risk (CCRMP) qualification, issued by the International Board for IT Governance Qualifications
About the Course
This three-day training course introduces the outcomes of PAS 555 and related cyber security guidance documents. It will also equip you with the practical knowledge to develop a cyber security risk management strategy that delivers the required outcomes in your organisation.
Who Should Attend
Senior Directors (CEO, CIO) who need to ensure their organisation is protected.
IT Directors or Managers responsible for developing and implementing a cyber security risk management strategy.
ISO27001 Lead Implementers and Lead Auditors.
Information Security Managers responsible for cyber security.
Professionals who hold CISA, CISM, CISSP, CRISC or CISMP certifications, who wish to apply current knowledge to the broader context of cyber security.
Risk and Compliance Managers who require an understanding of cyber security risk management outcomes and processes.
Risk and IS Consultants who wish to advise clients on the practical implementation of cyber security risk management.
Full course materials are provided.
Staff will obtain the skills required to support changing business needs.
By undertaking this course, you will keep your personal or professional skills up to date.
While there are no formal entry requirements, we assume that delegates are senior managers, directors or consultants. Knowledge of information technology is desirable, but not essential, as the key objective of this training course is to help you to understand and militate against the business risks associated with the use of cyber space.
No prereading needs to be undertaken for this course.