Overview
The Certified Chief Information Security Officer (CCISO) program is designed to produce top-level information security executives by focusing on both technical knowledge and executive management principles. Developed by seasoned CISOs, this program bridges the gap between technical expertise and executive management, preparing you to lead and manage an information security program effectively.
Objectives
By the end of this course, participants will be able to:
Prerequisites
- A minimum of five years of experience in at least three of the five CCISO domains.
- A strong understanding of technical information security concepts.
- Experience in managing information security programs and teams is recommended.
Course Outline
- Information Security Governance
- Establishing an information security management structure
- Defining security policies and procedures
- Risk Management
- Risk assessment methodologies
- Implementing risk mitigation strategies
- Designing Security Controls
- Control lifecycle management
- Monitoring and maintaining security controls
- Compliance Management
- Understanding laws, regulations, and standards
- Managing compliance audits
- Developing an Information Security Program
- Defining program objectives and requirements
- Resource allocation and budgeting
- Managing Security Operations
- Incident response planning
- Business continuity and disaster recovery
- Access Control Management
- Implementing identity and access management systems
- Monitoring access controls
- Network Security
- Designing secure network architectures
- Implementing intrusion detection and prevention systems
- Strategic Planning
- Aligning security initiatives with business objectives
- Developing a security roadmap
- Financial Management
- Budgeting for information security programs
- Cost-benefit analysis of security investments
- Third-Party Management
- Assessing and managing vendor risks
- Establishing third-party security requirements