05

Cyber Governance

Introduction to Methodology (GOV and CR):

What is Governance, What is Regulations; How is Cybersecurity Management Affected by Governance and Regulation; Introducting ISO, NIST and INCB.

CISO Role; The Need for Business Alignment; Introducing Processes, Life Cycles and Frameworks; Introducting Security Architecture by Secure Design.

Cyber Laws:

Relevant and Applicable Laws and Regulations; National and International Cyber Laws and Legal Cases; Discussing the Need for Compliance and Regulations; Introducing Use Cases.

Governance (Corporate, IT, Security):

What is Strategy: Corporate Strategy, InfoSec Positioning, Risk Modeling, Contextual InfoSec, Conceptual InfoSec, Creating a Strategic Plan.

Cyber Compliance:

Discussing Cyber Compliances; Various Industries Compliances (Health, Finance / Banking, Credit, Insurance); PCI, SOX, Bank of Israel Directive 357 and 361, Regulator of Insurance Directive.

Cyber Security Framework Introduction:

Information Security Program; Introducting Policies, Standards, Procedures and Guidelines; Introduction to International Standards; Introduction to Information Security Management Systems (ISMS) - ISO 27000.

ISMS - ISO27001:

Information Security Program; Security Management Framework; Deep Diving into ISO 27001 (ISMS).

Privacy in the Digital Age:

Legal and Regulatory Aspects of Privacy: Privacy world (Our digital signature), Legal requirements for keeping privacy (The constitution, The privacy protection law), InfoSec as means to protect privacy, Privacy by design.

Security Policies and Procedures:

The Need for an Organiational Cybersecurity Policy; Creating a Policy Document; Importance of Executive Management Support; Elaborating on Policies, Standards, Procedures.

חזרה לדף קורס CISO - לחצו כאן