IT Professionals New Zealand | Te Pou Hangarau Ngaio

Cybersecurity Self-assessment


Elf new.jpg

This Cybersecurity Self-assessment course is intended for those wishing to self-assess their organization's ability to respond to a range of potential cybersecurity threats following established methodologies. Self-assessment allows you to make informed decisions about your security spend rather than relying only on compliance requirements or vendor statements.
This course covers several best practice cybersecurity self-assessment tools suitable for both small and large organisations. The course covers how these tools can be used to document or establish cybersecurity maturity or ability to achieve compliance (for example for financial organisations). The course also includes adapting these existing frameworks to match the needs of a specific organisation with experienced professional guidance.
This course includes a range of interactive scenarios, case studies, videos and activities using real life examples so learners can obtain hands-on experience with the principles that are taught.

Target audience and course prerequisites

This Cybersecurity Self-assessment, Compliance and Maturity course is aimed at professionals from organisations with existing technical teams.
Previous networking and IT knowledge is helpful, but not required for this course.

It is recommended that you have the following knowledge and experience before starting this course:

  • Are aware of the general compliance requirements for your industry
  • Have experience with organisation-specific IT infrastructure and practices.
  • Have an interest in developing an organisation-wide self-assessment ability that extends beyond only technical staff

Course Outcomes

This course will teach you the fundamentals of use established frameworks to assess the cybersecurity maturity level(s) of an organisation. It covers distinct methodologies - one from the Open Source Web Security Project, one from the US Government and two from New Zealand Government. It also covers which aspects of these are or are not suitable for particular organisations and how to use these to build evidence of cybersecurity maturity in an organisation.

On course completion, you will be able to:

  • Use at least three different methodologies to evaluate the cybersecurity of an organisation
  • Understand the strengths and weaknesses of each approach, and make an informed decision as to which approach(es) would suit your organisation
  • Understand the core similarities between all assessment approaches
  • Critique existing cybersecurity tools or reporting based on their ability to provide information relevant to these self-assessment tools

Course Content

The course consists of a study volume, containing indexed notes and review questions, a series of supervised practical lab exercises and a comprehensive glossary.

Module 1 / General Cybersecurity Assessments
Content Areas:
Asset Management • Vulnerability Management • Risk Management • Training • Governance Processes • Incident Management
Tools:
Reporting on Access Control and Identity Management • Automating data gathering

Module 2 / Self-Assessment Tools
Methodologies:
OWASP SAMM • CRR • FMA Security Audit • NZCERT Critical Controls and the NZISM • ASD Essential Eight • Developing 'Maturity'
Labs:
Comparing results to compliance standards (such as ISO27001)



Want to run it at another time or place, or in-house?

Simply register your interest and we'll look at whether we can bring to you when you want it. If you're interested in an in-house option, register your interest and we'll come back to you.


Indicative cost for public workshops. Please contact us for in-house pricing

All ITP Financial Members$300.00 + GST / $345.00 incl GST
Staff of Corporate Partners (20% Discount)$344.35 + GST / $396.00 incl GST
Non-Members$430.43 + GST / $495.00 incl GST

This is an indicative cost only. Actual cost will be confirmed with you. Minimum numbers and other conditions apply.

 
 
View All 119 ITP Partners