TOPICS

Course Outline
1. Course Introduction
Let us get to know each other
Course learning objectives
Course agenda
Activities
Module end questions
Course book structure
RESILIA certification
2. Risk Management
Terms: Risk, asset, vulnerability, and threat
Actions needed to address risks and opportunities and explain their purpose
Create and manage both a risk register and a risk treatment plan:
3. Cyber Resilience Strategy
Establish governance
Manage stakeholders
Identify and categorize stakeholders
Create and manage cyber resilience policies
Manage audit and compliance
How ITSM processes and cyber resilience interact
4. Cyber Resilience Design
Human resource security
System acquisition, development, architecture and design
Supplier and third-party security
Endpoint security
Cryptography
Business continuity
How ITSM processes and cyber resilience interact
5. Cyber Resilience Transition
Asset management and configuration management
Classification and handling
Data transportation and removable media
Change management
Testing
Training
Documentation management
Information retention
Information disposal
How ITSM processes and cyber resilience interact
6. Cyber Resilience Operation
Access control
Network security management
Physical security
Operations security
Incident management
How ITSM processes and cyber resilience interact
7. Cyber Resilience Continual Improvement
Audit and review
Control assessment
Key Performance Indicators
Business continuity improvements
Process improvements
Remediation and improvement planning
Apply the seven-step improvement process to plan cyber resilience improvements
Apply the ITIL CSI approach to cyber resilience
8. Segregation of Duties and Dual Controls
Apply the concepts of segregation of duties and dual controls to an organizational context.