Description
Covers Sections 1 & 2 of ICCISS Certification Syllabus
1. Managing Information and Cyber Security (ICS); role definitions, purposes and responsibilities
1.1 ICS threats/risks typologies and taxonomies; Strategies and policies
1.2 Governance, compliance and risk management methods for ICS; cost-risk trade-offs.
1.3 ICS cultural and organizational influences; Security awareness training
2. Designing and Implementing Secure Systems
2.1 Security architectures; architectural frameworks for security hardening (e.g. TOGAF framework)
2.2 Developing SyOps for secure systems
2.3 Security testing techniques (e.g. OWASP methods)
2.4 Vulnerability assessments and mitigation approaches
2.5 Business continuity planning; hot, warm and cold standby schemes
2.6 Addressing physical security issues & social engineering threats
Duration: The module features twice weekly synchronous online sessions (2 hours per session), over a 6-week period (24 hours total course contact duration).