Once a baseline has been established in cybersecurity risk management essentials, firms can take these competencies and conduct readiness assessments for their clients through consulting or advisory services. Participants will learn how to keep abreast of the latest cybersecurity trends, manage risks, and ensure that clients are applying the right level of governance to safeguard their organization.
Some of the topics covered will include:
Application of knowledge of an effective cybersecurity risk management program to analyze a client’s program and conduct a readiness assessment
Differentiate the various frameworks available (e.g., NIST, ISO, TSC, and/or hybrid) and apply which is better as well as when/how to use it
Application of tests to client’s cybersecurity controls and other risk management activities based on existing frameworks
Identification of client recommendations for improvements based on readiness/assessment procedures
Identification of the appropriate skills for the assessment team
Understanding the client service opportunities and risks in providing advisory services in the cybersecurity space