This seminar provides the critical know-how to include cyber security in the audit plan, reduce cyber risks and implement mitigating controls.

Main Topics

ISACA’s new Cybersecurity Audit Certificate Program helps reviewing cyber security processes, policies and tools and ensures that the organization has the appropriate controls in place.

Goals

• Understanding security frameworks to identify best practices
• Definition of threat and vulnerability management
• Evaluate threats using vulnerability management tools
• Create and deploy secure authorization processes
• Explain all aspects of cybersecurity governance
• Distinction between firewall and network security technologies
• Improve asset, configuration, change and patch management practices
• Manage corporate identity and information access
• Identification of security controls for applications
• Identification of cyber and legal regulatory requirements to support compliance assessments
• Identification of weaknesses in cloud strategies and controls
• Performance of cyber security and risk assessments by third parties
• Identification of the advantages and risks of containerisation

Requirements

No formal requirements.

Target Audience

• IT audit experts and companies that need additional support in auditing cyber security
• Security experts who need an understanding of the audit process
• Risk and security professionals who need in-depth knowledge of cyber-related risks and the mitigation of controls
• IT professionals who want to learn more about what an IT auditor must consider when auditing cyber security

Certificate

Cybersecurity Audit Certificate, awarded by ISACA

Exam language English

Teaching Materials

Teaching material in English includes:

• Student workbook
• Exercises
• Trial exam

Execution

• Class with max. 15 participants
• Can be carried out with the following simulation:
  Ocean’s99 – eine Cyber Resilience Simulation
  ABC-of-IT Analysis of Preferences, Team behaviour and culture