This training focuses on the policy aspects of cybersecurity, covering cybersecurity standards in the EU, how to adopt them and put them into practice. The course is offered entirely online, and you will be able to decide whether to complete two modules or one.
At the end of the course, you will receive a certificate of attendance.
Over the past decades, the internet and information and communication technologies (ICTs) have had a profound impact on our daily lives, becoming an integral part of our institutional and social fabric. The supply of critical services across many sectors, including emergency and security services, health, water and food, energy and electricity, banking and finance, commerce, transportation, communications and education is now heavily reliant on ICTs. Our reliance on the internet and digital technologies makes us more vulnerable to new threats, including cybersecurity attacks. These threats put the provision of critical services, as well as the EU’s economies, at risk and ultimately compromise the security and fundamental rights of EU citizens.
Breaches of information security are a major threat to the functioning of our society, jeopardising public services, businesses and the economy. Under the EU regulatory framework (e.g. GDPR, NIS, Cybersecurity Act) our cybersecurity risks need to be evaluated. Security controls need to be implemented in the information systems of our infrastructures where all procedures, personal data, people and objects are stored and exchanged in a secure manner. To plan and implement efficient security policies and to comply with the EU regulations, public authorities, organisations and professionals need to raise their cybersecurity awareness and fully develop the necessary skills. Professionals need to be aware of the various cybersecurity standards (e.g. ISO 27001, ISO 27005, ISO 28000, ISO 15408) and procedures that can help them to become compliant with the EU regulations and protect their daily work, organisation and sector.
This training focuses on the policy aspects of cybersecurity, covering cybersecurity standards in the EU, how to adopt them and how to put them into practice. This unique programme brings together the experience of cybersecurity, security, EU policy and public administration experts to provide a practical understanding of the challenges related to designing and implementing cyber-proof policies within organisations and sectors. The training is designed specifically for non-IT professionals, with the objective of providing participants with the knowledge and skill set necessary to deal confidently with cybersecurity measures within their sectors and organisations.
What you will learn
- cybersecurity: fundamental concepts and knowledge;
- legal and policy aspects of cybersecurity in the EU: EU directives, guidelines, regulations, initiatives;
- assessing cybersecurity risks: identifying threats, vulnerabilities and impact, in various critical sectors including emergency, health, water and food, energy and electricity, banking and finance, commerce, transportation, communications and education;
- cybersecurity management and governance: bodies involved, processes and policies to manage cyber risks;
- crisis communication, business continuity and disaster recovery planning;
- prevention: the components of comprehensive cybersecurity policies;
- formulating policies to strengthen cybersecurity resilience: how do I design policy measures to make my sector or organisation cyber resilient?
Learn more here.