Cursos
Value: 1700 €
Timetable:
Monday, Wendsday and Thrusday from 18:00 H to 22:00 H
Format: Online
N. Hours: 30 H
During: 4 weeks
- Alternative Title(s)
- Information Security Risk Analyst
- Cybersecurity Risk Assurance Consultant
- Cybersecurity Risk Assessor
- Cybersecurity Impact Analyst
- Cyber Risk Manager
- Summary Statement
Manage the organisation’s cybersecurity-related risks aligned to the organisation’s strategy. Develop, maintain and communicate the risk management processes and reports.
- Mission
Continuously manages (identifies, analyses, assesses, estimates, mitigates) the cybersecurity-related risks of ICT infrastructures, systems and services by planning, applying, reporting and communicating risk analysis, assessment and treatment. Establishes a risk management strategy for the organisation and ensures that risks remain at an acceptable level for the organisation by selecting mitigation actions and controls.
- Deliverable(s)
- Cybersecurity Risk Assessment Report
- Cybersecurity Risk Remediation Action Plan
- Main Task(s)
- Develop an organisation’s cybersecurity risk management strategy
- Manage an inventory of organisation’s assets
- Identify and assess cybersecurity-related threats and vulnerabilities of ICT systems
- Identification of threat landscape including attackers’ profiles and estimation of attacks’ potential
- Assess cybersecurity risks and propose most appropriate risk treatment options, including security controls and risk mitigation and avoidance that best address the organisation’s strategy
- Monitor effectiveness of cybersecurity controls and risk levels
- Ensure that all cybersecurity risks remain at an acceptable level for the organisation’s assets
- Develop, maintain, report and communicate complete risk management cycle
- Key Skill(s)
- Implement cybersecurity risk management frameworks, methodologies and guidelines and ensure compliance with regulations and standards
- Analyse and consolidate organisation’s quality and risk management practices
- Enable business assets owners, executives and other stakeholders to make riskinformed decisions to manage and mitigate risks
- Build a cybersecurity risk-aware environment
- Communicate, present and report to relevant stakeholders
- Propose and manage risk-sharing options
- Key Knowledge
- Risk management standards, methodologies and frameworks
- Risk management tools
- Risk management recommendations and best practices
- Cyber threats
- Computer systems vulnerabilities
- Cybersecurity controls and solutions
- Cybersecurity risks
- Monitoring, testing and evaluating cybersecurity controls’ effectiveness
- Cybersecurity-related certifications
- Cybersecurity-related technologies
- e-Competences (from e-CF)
E.3. Risk Management (Level 4)
E.5. Process Improvement (Level 4)
E.7. Business Change Management (Level 4)
E.9. IS-Governance (Level 4)
Documentação
