Cybersecurity Audit School: Cybersecurity Overview

Today’s auditor needs to know more than just the terms and concepts regarding cybersecurity. They need to understand what controls are needed, why they are important, where the controls should be positioned, and how to perform substantive tests to assess the control’s reasonable effectiveness specifically related to cybersecurity. This class will explore cybersecurity through a series of lecture segments and related scenarios based on actual events designed to reinforce the attendee’s knowledge of effective control design, execution, warning signs, and investigative techniques. By the end of the session, attendees will be armed with additional knowledge of how to implement and assess controls and how, as auditors, they can be valued players in their organization’s “Cyber Defense Team.” Organizations need to establish robust cybersecurity programs to address risks to organizational infrastructure and data from cyberattacks through effective control design, the establishment of protection measures, the identification of warning signs, and investigative techniques. They also need to establish compliance with industry standards and regulatory requirements. This course will help you support your organization’s cybersecurity objectives. This course provides an overview, and covers the foundational aspects of cybersecurity, including terminology, key historical events, human and technical types of attacks, cybersecurity frameworks, governance, security policies, threat analysis, risk management. Who Should Attend Auditors and IT professionals seeking a foundational understanding of cybersecurity. CPE: 7