Introdução

This course is available to be delivered in a classroom and Live-Training model.

Live Training brings you the dynamic environment of the classroom, to your desk. Using your computer, you interact with the trainer and the trainees as if you were with them in the classroom.

This course enables the participants to acquire the fundamental knowledge and skills to operate and maintain a cybersecurity programme and framework based on the latest and most recognized international best practices. The course addresses the fundamental concepts and principles of cybersecurity, cybersecurity frameworks and related best practices, legislation and regulations, for governments and organizations, cybersecurity controls best practices, and the components, operation and maintenance of a cybersecurity programme. The course presents a proposed approach for cybersecurity, drafted and supported by international best practices and, finally it covers the fundamental concepts and principles for auditing a cybersecurity programme and framework. The course prepares the participants for the Behaviour® Cybersecurity Professional (CSP) certification. This certification course and the related certification scheme are developed under the Behaviour’s QMS and aligned with the requirements of ISO/IEC 17024, therefore valid at international level.

Metodologia

The Cybersecurity Professional training course is based on both theory and practice sessions with:

Lectures illustrated with examples based on real cases.

Practical exercises based on a full case study./li>

Review questions and exercises to assist the exam preparation./li>

To benefit from the practical exercises, the number of training participants is limited

Destinatários

Information security professionals, consultants and/or auditors that need to acquire the fundamental knowledge about the frameworks, controls, and applicable legislation regarding cybersecurity

Professionals who deal with internet services as well as applications, and also the IT infrastructure on a daily-basis

C-level managers, who need to understand what cybersecurity is and the impact that it has on the organization’s business objectives

Any person who needs to acquire a general understanding of cybersecurity

Pré-Requisitos

Participants should understand English as the course documentation is in this language.

Duração (dias)

2,5 days

Objectivos Gerais

At the end of the course participants should be able to:

Understand the fundamental principles and concepts related to cybersecurity;

Identify and understand the current frameworks on the market that can be used to support the implementation of a cybersecurity programme;

Apply mechanisms to operationalize a cybersecurity programme and framework in order to support its implementation and maintenance;

Comprehend how to perform a cybersecurity risk assessment;

Identify and apply cybersecurity controls to mitigate risks and prevent security breaches;

Understand the fundamental audit principles to support the audit of a cybersecurity programme and framework.

Programa

Course introduction

Fundamental concepts and principles of cybersecurity

Cybersecurity frameworks and controls

Fundamental concepts and introduction to cybersecurity frameworks

Cybersecurity frameworks, best practices, legislation and regulations, for governments and organizations:

NIS Directive

EU Cybersecurity Framework (proposal)

NIST Cybersecurity Framework

ISO Cybersecurity Framework (approach) base on ISO/IEC 27103

Cybersecurity controls best practices

ISO/IEC 27002

ISO/IEC 27032

NIST SP 800-53

COBIT

CIS Controls

Components, operation and maintenance of a cybersecurity programme

Common components and functions of a cybersecurity framework

Introduction to a cybersecurity programme approach

Using international best practices to support the implementation of a cybersecurity programme and framework

Implement, operate and maintain a cybersecurity framework as part of a cybersecurity programme

Fundamental concepts and principles for auditing a cybersecurity programme and framework

Cybersecurity Professional Certification Exam

xame

The “Cybersecurity Professional” exam fully covers the following competence domains:

Domain 1: Fundamental concepts and principles of cybersecurity

Domain 2: Cybersecurity frameworks and controls

Domain 3: Components, operation and maintenance of a cybersecurity programme

Domain 4: Fundamental concepts and principles for a cybersecurity audit

The “Cybersecurity Professional” exam is available in Portuguese and English language.

Exam duration: 2 hours.

Exam available on-site and online.

The exam result is sent via email to the candidate within two months after the examination, being the exam result graduated in qualitative note: “Pass or Fail”.

In the case of a failure, the result will be accompanied with the list of domains in which you had a mark lower than the passing grade.

If the candidate fails the exam, he is entitled to one free retake within a 12-month period from the initial exam date.

Certificação

After successfully completing the exam, participants can apply for “Associate CyberSecurity Professional” or “CyberSecurity Professional”, depending on their level of experience. A certificate will be issued to participants who successfully pass the exam and comply with all the other requirements related to the selected credential. The CyberSecurity Professional is a certification program aligned with ISO/IEC 17024 standard.