Cybersecurity Risk Management and Compliance

Course Format: Online

Program Language: Arabic

Entry requirements

Leadership & Strategic

20 hours (distributed over 4 days)

CISOs, Compliance Officers, Risk Managers

Admission Requirements

Understanding the basics of Information Security Management Systems (ISMS)

Experience in the cybersecurity field

Cybersecurity Risk Management Concepts

Cybersecurity Risk Definition
Difference between Risks, Threats, and Vulnerabilities
Types of Cybersecurity Risks
Strategic, Operational, Financial, Legal, Reputational
Risk Appetite and Risk Tolerance
Defining terms and how to determine them in government institutions
Risk Management Lifecycle
From identification to treatment and monitoring

Global Risk Management Frameworks

NIST Cybersecurity Framework Overview
General Principles and Foundations of Risk Management
Methodology Focused on Self-Assessment
When to Use Each Framework in a Government Context

Advanced Risk Assessment

Identifying the organization’s most critical systems and data
Threat sources (internal, external, natural)
Using assessment tools and other methods
Methods for calculating risk levels
Identifying risks that require immediate treatment

Government Sector Regulatory Compliance

Local data protection and cybersecurity laws
GDPR for personal data, PCI-DSS for payments
Highly regulated sectors
Fines, legal accountability, and reputational damage
Steps for building an effective compliance program

Developing Risk Policies

Hierarchy: Policies – Standards – Procedures – Guidelines
Core policy contents and components
Detailed steps for conducting risk assessments
Review frequency and update mechanisms
Integrating risk management into the organizational culture

Program Completion Certificate

After completing all course requirements, you can apply to receive an accredited Certificate of Completion from Ru’ya Academy for Leadership and Technology.

Click here to request the certificate