Online Course: “Cybersecurity Policies and Practices in the EU – for Non-IT Experts”, April 12-15 (EIPA, Maastricht)

This 2-days training focuses on the policy aspects of cybersecurity, covering cybersecurity standards in the EU, how to adopt them and put them into practice.

Over the past decades, Internet and Information and Communication Technologies (ICTs) have profoundly impacted our daily lives, becoming an integral part of our institutional and social fabric. The supply of critical services is now heavily reliant on ICTs. Our reliance on the internet and digital technologies makes us more vulnerable to new threats, including cybersecurity attacks. These threats put the provision of critical services and the EU’s economies at-risk, and ultimately compromise the security and fundamental rights of EU citizens.

Breaches of information security are a major threat to our society’s functioning, jeopardizing public services, businesses, and the economy. Under the EU regulatory framework (e.g., GDPR, NIS, Cybersecurity Act), our cybersecurity risks need to be evaluated. Also, security controls need to be implemented in the Information Systems of our infrastructures, where all procedures, personal data, people, and objects are stored and exchanged securely. To plan and implement efficient security policies and comply with the EU regulations: public authorities, organizations and professionals need to raise their cybersecurity awareness and fully develop the necessary skills. Professionals need to be aware of the various cybersecurity standards (e.g., ISO27001, ISO 27005, ISO 28000, ISO15408) and procedures that can help them become compliant with the EU regulations and protect their daily work, organization, and sector. This unique programme brings together the experience of cybersecurity, security, EU policy, and public administration experts to provide a practical understanding of the challenges related to designing and implementing cyber-proof policies within organizations and sectors. The training is designed specifically for non-IT professionals, to provide participants with the knowledge and skillset necessary to confidently deal with cybersecurity measures within their sectors and organizations.

Read more here.