Certified Chief Information Security Officer

The Certified CISO (CCISO) program is the first of its kind training and certification program aimed at producing top-level information security executives. The CCISO does not focus solely on technical knowledge but on the application of information security management principles from an executive management point of view. The program was developed by sitting CISOs for current and aspiring CISOs.

Course Objectives:

• Information Security Management Program

• Defining an Information Security Governance Program

• Regulatory and Legal Compliance

• Risk Management

• Designing, deploying, and managing security controls

• Understanding security controls types and objectives

• Implementing control assurance frameworks

• Understanding the audit management process

• The role of the CISO

• Information Security Projects

• Integration of security requirements into other operational processes (change management, version control, disaster recovery, etc.)

• Access Controls

• Physical Security

• Disaster Recovery and Business Continuity Planning

• Network SecurityThreat and Vulnerability Management

• Application Security

• System Security

• Encryption

• Vulnerability Assessments and Penetration Testing

• Computer Forensics and Incident Response

• Security Strategic Planning

• Alignment with business goals and risk tolerance

• Security emerging trends

• Key Performance Indicators (KPI)

• Financial Planning

• Development of business cases for security

• Analyzing, forecasting, and developing a capital expense budget

• Analyzing, forecasting, and developing an operating expense budget

• Return on Investment (ROI) and cost-benefit analysis

• Vendor management

• Integrating security requirements into the contractual agreement and procurement process

Audience: 

• The CCISO is for information security executives aspiring to be CISOs through refining their skills and learning to align information security programs with business goals and objectives. This program also encourages existing CISOs to improve their technical and management skills, as well as business procedures.

Prerequisites:

• None