About the course
Success in the cybersecurity field requires not only technical knowledge, but also an understanding of the relevant human, organizational, and legal issues. This course will develop the knowledge and skills necessary to design a cybersecurity strategy, including people, process, and technology, in a complex organization. While the course will address global issues, particular emphasis will be placed on legal and regulatory frameworks affecting local organizations, such as FISMA and HIPAA. Topics will include the components of an information security program; information security metrics and demonstrating return on investment; information security policy, risk-based cybersecurity business decision making; legal and regulatory frameworks (PCI, HIPAA, SOX, GLBA, FISMA, EU Data Privacy, etc); information security standards (NIST 800-53, ISO 27001); incident response, crisis management, & business continuity; the impact of organizational culture on cybersecurity; communications; privacy; and ethics.
Upon completion of this course, students will be able to:
- Design, communicate, and execute a cybersecurity strategy
- Manage public relations for a successful cybersecurity strategy
- Identify the legal and regulatory requirements relevant to an organization
- Prepare response plans for a variety of foreseeable incidents
- Understand the common obstacles in a complex organization to effective execution of a cyber security strategy.
- Discuss important ethical and stakeholder issues in cybersecurity
Phuong Nguyen is a Manager in the Fraud Investigation & Dispute Services practice of Ernst & Young LLP. Phuong assists the National Coordinator for Forensic Technology and Cyber Investigations, in working with clients to develop insider threat programs, data protection programs and respon...
Read more about Cybersecurity
Read more about Information Technology
Because of COVID-19, many providers are cancelling or postponing in-person programs or providing online participation options.
We are happy to help you find a suitable online alternative.