Leadership & Strategic
20 hours (distributed over 4 days)
CISOs, Compliance Officers, Risk Managers
Understanding the basics of Information Security Management Systems (ISMS)
Experience in the cybersecurity field
- NIST Cybersecurity Framework Overview
- General Principles and Foundations of Risk Management
- Methodology Focused on Self-Assessment
- When to Use Each Framework in a Government Context
- Identifying the organization’s most critical systems and data
- Threat sources (internal, external, natural)
- Using assessment tools and other methods
- Methods for calculating risk levels
- Identifying risks that require immediate treatment
- Local data protection and cybersecurity laws
- GDPR for personal data, PCI-DSS for payments
- Highly regulated sectors
- Fines, legal accountability, and reputational damage
- Steps for building an effective compliance program
- Hierarchy: Policies – Standards – Procedures – Guidelines
- Core policy contents and components
- Detailed steps for conducting risk assessments
- Review frequency and update mechanisms
- Integrating risk management into the organizational culture
After completing all course requirements, you can apply to receive an accredited Certificate of Completion from Ru’ya Academy for Leadership and Technology.