Cybersecurity Professional

Introduction

This course is available to be delivered in a classroom and > Live Online Training <

This course enables the participants to acquire the fundamental knowledge and skills to operate and maintain a cybersecurity programme and framework based on the latest and most recognized international best practices. The course addresses the fundamental concepts and principles of cybersecurity, cybersecurity frameworks and related best practices, legislation, and regulations, for governments and organizations, cybersecurity controls best practices, and the components, operation, and maintenance of a cybersecurity programme. The course presents a proposed approach for cybersecurity, drafted, and supported by international best practices, it covers the fundamental concepts and principles for auditing a cybersecurity programme and framework, and finally, includes an overview of the new EU Cybersecurity Certification.

The frameworks, regulation and legislation covered during the course, includes an overview of the practices such as (but not only) ISO (ISO/IEC 27001, ISO/IEC 27032, ISO/IEC 27103), NIST (CSF 1.1 vs. 2.0), ENISA-EU (NIS vs. NIS 2, the Cybersecurity Act, DORA, eIDAS, among others), ISACA, AXELOS, CIS controls, among others relevant for the role of the Cybersecurity Professional.

Training Methodology

This course is based on theorical, and practical sessions supported by a real-world adapted case-study.
The course includes hands-on practical and theorical exercises to:

• better prepare the students for the real-world challenges, and
• to prepare and increase the likelihood of success on the certification exam, and
• train and prepare professionals to perform the Cybersecurity Professional role in a public or private organization.

This course is available to be delivered in a > Live Online Training < model and classroom.
Live Training brings you the dynamic environment of the classroom, to your desk. Using your computer, you interact with the trainer and the trainees as if you were with them in the classroom.

Audience

• Information security professionals, consultants and/or auditors that need to acquire fundamental knowledge about the cybersecurity frameworks, controls, and applicable legislation regarding cybersecurity.
• Professionals who deal with internet services as well as applications, and the IT infrastructure on a daily basis.
• Cybersecurity professionals who need to implement the latest requirements for compliance with new regulations and legislation.
• Cybersecurity professionals who need to understand the latest cybersecurity frameworks and requirements to support their organizations to achieve the new EU Cybersecurity certification.
• C-level managers, who need to understand what cybersecurity is and the impact that it has on the organization’s business objectives.
• Any person who needs to acquire a general understanding in cybersecurity best practices, frameworks, and related controls.

Prerequisites

Students should understand English as the course documentation is in this language.
Also, other requisites may apply, please check the quotation or the proposal received.

Duration (days)

2,5 days

Learning Objectives

At the end of the course participants should be able to:

• Acquire knowledge on the fundamental principles and concepts related to cybersecurity; and identify and understand the current frameworks on the market that can be used to support the implementation of a cybersecurity programme.
• Apply mechanisms to operationalize a cybersecurity programme and framework to support its implementation and maintenance.
• Perform a cybersecurity risk assessment and identify and apply cybersecurity controls to mitigate risks and prevent security breaches.
• Understand the fundamental audit concepts and principles to support the audit of a cybersecurity programme and framework.
• Have an overview of the new EU Cybersecurity certification scheme.
• Acquire the required knowledge to succeed in the “BEHAVIOUR Certified Cybersecurity Professional” exam and achieve a personnel certification.

Program

1. Introduction to cybersecurity, fundamental concepts, and principles; Cybersecurity frameworks and controls.
• Course introduction
• Fundamental concepts and principles of cybersecurity
• Fundamental concepts and introduction to cybersecurity frameworks
• Cybersecurity frameworks and recent best practices
• Cybersecurity legislation and regulation, for governments and organizations
• Cybersecurity controls best practices


2. Components, operation and maintenance of a cybersecurity programme and framework; Concepts and principles for auditing a cybersecurity programme and framework.
• Components and functions of a cybersecurity framework
• Introduction to a cybersecurity programme implementation approach
• Implement, operate, and maintain a cybersecurity framework as part of a cybersecurity programme
• Introduction to audit concepts, principles, and best practices to audit a cybersecurity programme
• Overview of the new EU Cybersecurity Certification

Exam

The “Certified Cybersecurity Professional (CSP)” exam covers the following competence domains:

• Domain 1: Fundamental concepts and principles of cybersecurity
• Domain 2: Cybersecurity frameworks and controls
• Domain 3: Components, operation, and maintenance of a cybersecurity programme
• Domain 4: Fundamental concepts and principles for a cybersecurity audit

Language(s): English and Portuguese (please consult BEHAVIOUR for availability on additional languages).
Duration: 2 hours (120 minutes).
Exam type: Open questions based on several small case studies and related to the competency domains.
Number of questions: 6 questions.
Passing score:700/1000 marks.
Results: “Pass or Fail”
If the candidate fails the exam, he is entitled to one free retake within a 2-month period from the released date of the exam result.

Certification

After successfully completing the certification exam, and signing the agreement/code of ethics, participants may apply for one of the two available credentials for this personnel certification scheme, depending on their level of experience.

• Certified Associate Cybersecurity Professional: no previous experience required.
• Certified Cybersecurity Professional: 2 years of experience in information security and/or cybersecurity in the related competence. A certificate will be issued to participants who successfully pass the exam and comply with all the other requirements related to the selected credential. Candidates also receive the digital badge of the certification achieved.

The “Certified Cybersecurity Professional” personnel certification program is drafted and maintained according to the ISO/IEC 17024 standard.

The certification programs are only valid to persons (not companies) and the achievement and maintenance depends on the exam result, on the professional experience and the commitment and comply to the agreement/code of ethics. If a professional does not comply with the agreement/code of ethics, the certification is not assigned or is revoked.

Trainer

Our professionals are renowned cybersecurity specialist, including, experts, consultants, and auditors, with several years of experience in the areas of advisory, implementation, auditing, and training in cybersecurity and related worldwide regulations, legislation, including the NIST cybersecurity framework, ISO/IEC 27001, ISO 22301, COBIT, CIS controls, among many others.

Some of our experts work directly on the improvement of these practices through their participation in the specific committees responsible in various countries.

General Information

• Training in English language.
• Online training material resources in English, with online access, and in accordance with the commercial conditions.
• Behaviour Digital Participation Certificate of 16 CPD/CPE credits.
• Online Certification Exam in Portuguese or English language. The exam can be taken up to 2 months from the start date of the course.
• If the candidate fails the exam, he is entitled to one free retake within a 2 month period from the date of the exam result.
• Certification Diploma and certification badge after successful examination and formal process registration. This process has no associated cost.

Benefits

• The Cybersecurity Professional course bases its pedagogical model in a certification program based on the ISO/IEC 17024 standard, which defines the requirements for certification of people, fulfilling the recommendations of ISO.
• The Cybersecurity Professional course is oriented towards the acquisition of knowledge in best practices to operate, support, and maintain a Cybersecurity programme and framework in an organization. Thus, throughout the course, in addition to the basic concepts of cybersecurity, referenced is made to the general concepts and principles of cybersecurity, international cybersecurity frameworks and all related aspects; practices for auditing a cybersecurity programme and framework; and the new EU Cybersecurity Certification scheme.
• The course allows the participants to establish common ground regarding concepts, definitions, threats, and best practices related to cybersecurity inside of the organization.
• The participant, and consequently, the organization, will be better prepared to handle potential threats and attacks done that can affect the organization’s objectives.
• The participant will be able to better support the implementation of the organization’s cybersecurity programme and framework.
• The organization will be able to implement a baseline for critical controls to face challenges and threats associated with cyberspace.
• Certification exam is monitored by an official Behaviour administrator.
• The Cybersecurity Professional certification exam is conducted at the end of the course, on the last day of the training which focuses on open questions based in small case studies allowing the certifying entity to measure, more effectively, the knowledge of the candidates.
• Upon success in the exam, the professional will achieve one of the Cybersecurity Professional certifications levels. If the professional fails the exam, he is entitled to one free retake within a 2-month period from the released date of the exam.
• Behaviour Pedagogical Model aims to provide a learning environment conducive to acquisition of competences, in accordance with objectives of each training program. Promoting interaction, participation, and appreciation of experiences, we contribute to meaningful learning, certification, and international recognition but, above all to the development of critical thinking and autonomy.
• Behaviour is an organization accredited by DGERT (Portuguese Government Entity). Behaviour has its Quality Management System (QMS) implemented in accordance with the requirements of ISO 9001, the requirements of DGERT, the requirements of the European standard NP 4512 and the standard ISO 10015.

Dates and Price

Guaranteed Dates Program

(*) All dates of this course are guaranteed only for the events that take place in Lisbon. In other physical locations or in Live Online training, all events are subject to a minimum number of participants.

On Behaviour all classroom courses at Lisbon occur regardless of the number of trainees in room. The concept of setting up classes does not exist in our classroom educational model, which is why all classroom public dates, presented on the website, are guaranteed. So if you're in Portugal or anywhere else in the world, you can prepare your week and your trip, as long as you ensure your registration in the a classroom course.

Volume Discounts

For companies, Behaviour offer discounts, starting from the registration of the 2nd participant, in the same course and on the same date.
Simulate the prices for the number of participants you want to register to training@behaviour-group.com or contact us via chat.

Hotels and Useful Information

Know where you can stay in Lisbon. For more information please check online Booking.com