Cybersecurity Program Fundamentals

This course provides an overview of cybersecurity threats along with the fundamentals of a strong cybersecurity program. It is designed for both non-technical and technical learners who want to understand how threat actors see their targets, and it shares methods to help mitigate risks.

Learners will be introduced to foundational elements of cybersecurity programs, including security governance to establish a security framework, and ways to align the security program with business objectives. Security risk management, measurement, and communications will also be covered. Security architecture topics will address common security practices and tools used to monitor and protect mature organizations. Cyber defense topics such as building an incident response plan will also be discussed, alongside examples of incident response methodologies.

Prerequisites: A working understanding of basic information security principles is a plus, but not required.

After completing this course, learners should be able to:

• Have awareness of today’s threat landscape
• Understand common attacker methodologies
• Understand how an attacker enters, persists, and exfiltrates data from an organization via the attack lifecycle
• Establish governance that will provide guidance and oversight to the cybersecurity program
• Write an effective cybersecurity mission statement, vision statement, and strategic plan
• Understand how a cybersecurity risk program helps businesses make informed, risked-based decisions
• Define basic security architectures
• Understand common technologies used by modern cybersecurity programs
• Understand the foundational components of a strong cybersecurity program

Managers, technical staff, and non-technical staff in cybersecurity roles, or other roles supporting cybersecurity functions.

In-classroom or virtual instructor-led training.

• 2 days (in-person delivery)
• 3 days (virtual delivery)