Cybersecurity Professional Course develops advanced technical cybersecurity skills, with a focus on protection, detection, response and operational robustness in modern environments. The training deepens practical capabilities to act on threats, vulnerabilities and technical control in an organisational context.
Quick Access: Introduction· Why this course exists· What this course enables· Frameworks and models· Value· Objectives· Target audience· Programme· Exam & Certification· Other information· Benefits· Logistics· Registration
Upcoming dates
Confirmed dates.
Synchronous, live training. Interaction with the trainer and the group.
Live Online • next edition
Live Online • base price
Language: available in PT or ENG
Training: practical and case-study based
Exam: 2h
SPECIALIST Level – Advanced skills to address critical challenges in the field.
Why this course exists
To transform practices and requirements into structured decision-making and operational control.
Many organisations invest in technology, but continue to fail in translating between technical risk, business impact and governance decision-making.
This course prepares professionals to structure cybersecurity with method, common language and decision-making capability.
What this course enables you to do
Structure
Organise cybersecurity by risk, control and executable priorities.
Translate
Convert technical risk into impact and language that is understandable for management.
Demonstrate
Support decisions and evidence in audit and compliance contexts.
Operationalise
Apply best practices and decision mechanisms in real scenarios.
Frameworks, models and structures addressed throughout the course
Risk models
Decision structures
Examples of controls
Practical cases
Adaptable templates
Value for the organisation
- Reduction of operational and reputational risk through more consistent control
- Improved maturity (decision, priority, evidence and governance)
- Alignment between technical teams and management
- Preparation for audit and applicable regulatory requirements
Introduction
The Cybersecurity Professional course is based on international reference cybersecurity frameworks, including ISO/IEC 27001, ISO/IEC 27103 and NIST CSF 1.1 and 2.0. Throughout the training, the evolution of the legal and regulatory context associated with cybersecurity is also framed, with reference to relevant instruments and frameworks, such as NIS and NIS 2, DORA, CRA, eIDAS and the European Artificial Intelligence Regulation (AI Act).
The course follows a practical approach supported by a case study, designed to bring participants closer to real organisational scenarios. This methodology makes it possible to consolidate concepts, apply principles and understand in a structured way how to support the establishment, operation and maintenance of a cybersecurity programme.
Throughout the learning journey, participants develop knowledge about fundamental cybersecurity concepts and principles, frameworks and best practices, cybersecurity controls, components of a cybersecurity programme and audit fundamentals applicable to the assessment of programmes and frameworks in this area. The course also includes an overview of the new EU Cybersecurity Certification programme.
This training prepares participants for the Certified Cybersecurity Professional certification exam. The certification was developed and is maintained in accordance with the requirements of the international standard ISO/IEC 17024.
Among the references addressed throughout the course are practices and frameworks such as ISO (including ISO/IEC 27001, ISO/IEC 27032 and ISO/IEC 27103), NIST, ENISA/EU references, ISACA, AXELOS and CIS controls, among others relevant to the Cybersecurity Professional role.
This Training Plan and all associated documents are protected by Copyright and registered as a literary work with IGAC.
General Objectives
At the end of this course, participants will be able to:
- Understand the fundamental principles and concepts related to cybersecurity; and identify and understand the current cybersecurity frameworks that may be used to support the implementation of a cybersecurity programme.
- Apply mechanisms to operationalise a cybersecurity programme and framework in order to support its implementation and maintenance.
- Carry out a cybersecurity risk assessment and identify and apply cybersecurity controls to mitigate risks and prevent incidents.
- Understand the fundamental audit concepts and principles in order to support the audit of a cybersecurity programme and framework.
- Have an overview of the new EU cybersecurity certification scheme.
- Possess the necessary knowledge to successfully take the BEHAVIOUR Certified Cybersecurity Professional certification exam and obtain a personal certification.
Target Audience
- Information Security and Cybersecurity professionals who need to consolidate foundations and best practices.
- Consultants and auditors (or future auditors) who need a common language, structure and evidence for compliance contexts.
- IT/management professionals with responsibility for supporting the operation and maintenance of a cybersecurity programme/framework.
Prerequisites
There are no mandatory formal prerequisites. However, this course is recommended for professionals with basic knowledge of information systems, networks, security or organisational technology contexts.
It is particularly suitable for those who wish to structure a solid and practical view of cybersecurity, integrating technical concepts, risk and best practices applicable in a professional environment.
In addition, other specific requirements may apply, where relevant, depending on the quotation/proposal presented (see the proposal).
Programme
Fundamental concepts; frameworks and controls
- Introduction to the course
- Fundamental cybersecurity concepts and principles
- Fundamental concepts and introduction to cybersecurity frameworks
- Cybersecurity frameworks and recent best practices
- Cybersecurity legislation and regulation for governmental bodies and organisations
- Cybersecurity controls best practices
Operation and maintenance; auditing; EU certification
- Components and functions of a cybersecurity framework
- Introduction and approach to implementing a cybersecurity programme
- Implement, operate and maintain a cybersecurity framework as part of a cybersecurity programme
- Introduction to audit concepts, principles and best practices for auditing a cybersecurity programme
- Overview of the new EU Cybersecurity Certification
Exam(s) and Certification
Exam “Certified Cybersecurity Professional (CSP)”
The “Certified Cybersecurity Professional (CSP)” exam covers the following competence domains:
- Domain 1: Fundamental cybersecurity concepts and principles
- Domain 2: Cybersecurity frameworks and controls
- Domain 3: Components, operation and maintenance of a cybersecurity programme
- Domain 4: Fundamental concepts and principles for a cybersecurity audit
Language(s): Portuguese and English (consult BEHAVIOUR for availability in other languages).
Duration: 2 hours (120 minutes).
Type of exam: Open questions based on a case study and related to the competence domains.
Scoring: 6 questions.
Pass mark: 700/1000 points.
Results: “Pass or Fail”
Issuing entity: Behaviour (legal entity), through its certification service Behaviour Certification Services.
Retake: 1 free retake within 1 year after the initial exam.
Certification (levels and requirements)
After successfully completing the exam and accepting/signing the applicable agreement and Code of Ethics, candidates may apply for one of the two levels available for this person certification scheme, depending on their level of experience.
- Certified Associate Cybersecurity Professional: no prior experience is required.
- Certified Cybersecurity Professional: 2 years of experience in information security and/or cybersecurity in the related competence domains.
A Certificate and a digital Certification Badge (i.e., “badge”) will be issued to participants who successfully complete the certification exam and satisfy all requirements of the certification for which they are applying. The certification is issued by Behaviour (legal entity), through its certification service Behaviour Certification Services.
The “Certified Cybersecurity Professional” person certification programme is designed and maintained in accordance with ISO/IEC 17024.
Certification programmes are valid only for individuals (not companies), and the award and maintenance of certification depend on the exam result, professional experience and compliance with the applicable agreement/Code of Ethics.
If the professional does not comply with the agreement/Code of Ethics, the certification is not granted or is revoked.
Other Information
General Information
- Training in Portuguese or English
- Online training materials in Portuguese or English, with online access, and in accordance with the awarded conditions
- Practical step-by-step implementation methodology
- Behaviour digital Training Attendance Certificate with 16 CPD/CPE credits
- Online Certification Exam, in Portuguese or English. The exam may be taken up to 2 months from the course start date
- If the candidate does not pass the exam, they are entitled to one free retake within a maximum period of 2 months from the release date of the initial exam result
- Digital Certification Diploma and digital Certification Badge, after successfully passing the exam and completing the application process. This process has no associated cost
Trainer(s)
Our professionals are renowned specialists in the cybersecurity field, including specialists, consultants and auditors, with several years of experience in cybersecurity consulting, implementation, auditing and training, and in the various related regulations and legislation worldwide, including NIST cybersecurity frameworks, ISO/IEC 27001, ISO 22301, COBIT, CIS, among many others.
Some of our specialists work directly on improving these practices through their participation in the specific committees responsible for them in the various countries.
Benefits
View benefits
- The Cybersecurity Professional course is based on the BEHAVIOUR pedagogical model and on a certification programme in accordance with ISO/IEC 17024, which defines the requirements for the certification of persons, in line with ISO recommendations.
- The Cybersecurity Professional course is oriented towards acquiring knowledge of best practices to operate, support and maintain a cybersecurity programme and framework within an organisation.
- The course enables participants to acquire common concepts regarding concepts, definitions, threats and best practices related to cybersecurity within an organisation.
- The participant and, consequently, the organisation will be better prepared to deal with potential threats and attacks that may affect the organisation’s objectives.
- The participant will be better able to support the implementation of a cybersecurity programme and framework in the organisation.
- The organisation will be able to implement a basis of critical controls to address challenges and threats associated with cyberspace.
- The certification exam is supervised by an official BEHAVIOUR administrator.
- The Cybersecurity Professional certification exam is taken after the course and is based on open/development questions based on a case study.
- Upon passing the exam, and after applying for certification, the professional reaches one of the certification levels. If the candidate does not pass the exam, they are entitled to one free retake within a maximum period of 2 months.
Logistics
Useful information
- Live Online (synchronous time): 9:30–17:30 (Lisbon, GMT 0), with lunch break and short breaks.
- Classroom (synchronous time): 9:30–17:30 (Lisbon, GMT 0), with lunch break and short breaks.
- 14 hours of synchronous training, distributed across 2 consecutive days
- Estimated 2 hours of guided autonomous work, intended for content consolidation and exam preparation, carried out flexibly outside the synchronous sessions
- Requirements: computer with stable internet, browser, PDF reader, audio/video.
Hotels in Lisbon
Find out where you can stay in Lisbon, near Behaviour, for classroom training.
Frequently Asked Questions
Objective answers to the most common questions about the Cybersecurity Professional Course.
What is the difference between this course and purely technical cybersecurity training?
Does this course help connect cybersecurity, risk and governance?
Is the course relevant for organisations subject to regulatory requirements or greater scrutiny?
Is this training useful for those who need to communicate with management, audit or compliance?
Can this course serve as a basis for evolving towards functions with greater responsibility in cybersecurity?
For general questions about registration, delivery modes, exams, certification and recertification, please consult the BEHAVIOUR® FAQs.
Registration
Complete the form to request your registration for the preferred edition. Check the upcoming dates.
Request more information
If you would like help to frame the course within your professional or organisational context, contact us and we will indicate the most suitable path.
Companies: request a proposal
For team registrations, we provide volume conditions and a proposal tailored to the organisational need.