NUS Institute of Systems Science

NICF- Managing Cybersecurity Risk

Available dates

This course has no confirmed dates in the future. Subscribe to be notified when it is offered.

About the course

With Singapore’s push towards international connectivity and the pervasive adoption of digital technologies as recommended by Committee on Future Economy (CFE), we inadvertently expand our cyber attack surface. Singaporean organisations and Singapore citizens are thus more exposed to global threats posed by cyber threats – from individual, opportunistic hackers, to professional and organised cyber criminals groups with strategies to systematically steal intellectual property, disrupt businesses and even threaten our safety.

In today’s digital business environment, cyber attacks can cripple the entire business operations if an organisation is unprepared. Investing in cybersecurity technology alone is insufficient to address cyber threats. Creating an informed and knowledgeable organisational culture that emphasises cybersecurity is a must for the entire organisation, and with business/operational leaders taking the lead is now an imperative.

This course is designed to provide you with the necessary skills to implement the right cybersecurity strategy and action plans, taking into considerations your business environment, your business and the potential cyber threats that will affect the business operations in the digital economy. In addition, it provides a detailed prescriptive framework which includes Incident Response Plan (using industry best practices) and a Cyber Maturity Model, instead of knowledge sharing without an approach to application. How public and private enterprises can play a role in ensuring that Singapore remain cyber resilience will also be discussed.

Key Takeaways

On completion of the course, participants will:

  • Understand the cybersecurity strategies and polices
  • Have knowledge of potential cyber threats and system vulnerabilities
  • Be able to identify the threats and risks that are relevant to his/her organisation and systems
  • Be able to assesses the business impact of the identified threats and formulate possible responses
  • Plan and communicate cybersecurity requirements with stakeholders
  • Plan swift response to cyber attacks
  • Be able to establish or improve decision-making during cyber attacks

What Will Be Covered

  • Building a cybersecurity strategy
  • Creating cybersecurity policies
  • Conceptual security architecture
  • Approach to information risk management
  • Cyber resilience
  • Action plan to close the gap


Lectures, case studies and group exercises

Who should attend

This course is targeted at participants who are required to propose, supported by the cybersecurity professionals, to formulate, propose and execute the cybersecurity strategy and action plans approved by their organisation’s top leadership team. This may include:

  • Project(s) sponsor(s)
  • Risk managers, governance officers and compliance managers who require in-depth knowledge of cybersecurity
  • Business/operational leaders who are participating in cybersecurity-related decisions
  • Enterprise system owners/data owners who need to integrate their cybersecurity requirements into business processes

Trust the experts

Tan Lay Ngan

Lay Ngan delivers courses and manages consulting projects on IT Governance, Strategic IT Planning, Enterprise IT Architecture and Data Governance. She also conducts Postgraduate Course and Essential Leadership Skills for Project Managers. Her recent completed consultancy projects included a large...


Richard Tan

Richard lectures in project management competency development and training courses; the Certified Outsourcing Manager (Associate) for IT Programme; the Certified Enterprise Architecture Practitioner Programme; and the Master of Technology Programme that include IT Service Management and Data Ware...


Tan Peng Wei

Peng Wei is currently the Chief of Information & Technology (IT) Strategy & Management Practice at the Institute of System Science (ISS), National University of Singapore. He has more than 30 years of working experience in Business and Technology Services. He begin his teaching career wit...


Course reviews