Executive Master In Cybersecurity Management

Information Security Leadership (the CISO Fundamentals)

January - February 2024

The core management activities of a modern information security leader include security governance, risk management, program management and incident management processes. The module illustrates job description of a typical CISO today and the role of a CISO at an organisation, explaining reporting lines and responsibilities, skills, and expertise. In this module we talk about typical challenges that CISOs face in their role. The module also addresses design and implementation of an Information Security Strategy taking into account an assessment and relevant information security risks. Proper attention is given to application of the information security management system (ISMS), proactive and reactive security incident management as well as tracking security leadership KPIs. Finally, the module focuses on self-evaluation of a CISO.

Pre-readings for the module include ISACA CISM body of knowledge, ISO 27xxx security standards, NIST Cybersecurity Framework, ISACA Digital Trust approach, Hofstede cultural dimensions theory. At the end of the module participants will be working in groups on development of a new security strategy and improving current security of an organisation as a part of their business case.

Security Controls: Governance, Risk, Compliance and Certification

March - April 2024

The module takes participants through the process of analyzing context, defining scope, modeling threats, outlining security  controls and requirements, finding the solution space for controls (incl. technologies and operating models), evaluating risk (Inherent vs. Residual) and anchoring it in policy, providing assurance that controls operate as intended for the purpose of internal and external assurance obligations or certifications. This part builds on concepts introduced in module 1 (Information Security Leadership). Participants will gain a good understanding of security controls and their respective trade-offs from the angles of technology, people, and process. They will understand how kill-chain analysis in threat modeling helps bring focus and cohesion, and how it also helps in building a business case. They will gain an understanding on how a layered approach of assurance and reporting supports effective management of security controls. Pre-readings for this module introduce participants to various control frameworks such as COBIT, ISO 27002, NIST cybersecurity controls, CIS20 and OWASP models. During the group case work participants will focus on practical application of threat modeling techniques, control specifications, governance definition and operations in an enterprise focusing on crown jewels.

Security Architecture: Securing the Landscape

May - June 2024

Often people talk about “security-by-design” or “privacy-by-design”. Indeed security cannot be “bolted on” effectively at a later stage. The better security is embedded “by design” in all layers of your organization’s solution architecture, design and delivery, run and operations, the better you will be able to understand your security posture, as well as outstanding gaps and risks. To  understand all the benefits the module demystifies security architecture and explain how it can and should be used not only by IT professionals but also, how it can help support governance, risk and compliance processes. Participants learns about various models of security architecture, how they can be effectively used to identify attacks vectors, threats and how these can be used to determine mitigating controls.

Initial pre-readings include the TOGAF, SABSA, and OSA frameworks, followed by lectures with experienced speakers, and studying on concrete and practical cases.

Security Operations: Continuity and Crisis Management

September - October 2024

The module builds upon concepts of the previous modules where Information Security Governance, implementation of Security Controls and Secure Architecture are key building blocks to set up a good Security Operations team. Information technology has become critical for most modern businesses, as a result a cyber risk has become a business risk. Security Operations teams are facing today more pressure than ever to help manage the risks by identifying and responding to threats across a diverse set of technical assets, business processes, and users in a pro-active and reactive way. The module teaches how to design defences around unique organizational requirements and potential risk profiles. We will give you the necessary tools to build an intelligence-driven defence, measure progress towards your goals, develop more advanced processes like threat hunting, active defence, and continuous Security Operations assessment. Participants will gain a good understanding of the core and auxiliary functions of a Security Operations team and possible implementation models depending on an organization`s size and characteristics. The module provides tools and frameworks for operational planning that will focus on key aspects like defence theory and mental models to understand and map potential adversaries, telemetry and analysis, attack detection and investigative process, incident response and crisis communication up to assessment tools and frameworks to strive for continuous improvement.

Cybersecurity Battleground: Threats, Vulnerabilities and Technologies

November - December 2024

Cybersecurity management practices require the knowledge of your own business, its functional and technical vulnerabilities and the threat landscape that needs to be addressed. The capabilities that require building cybersecurity capacity include Identification, Protection, Detection, Response and Recovery techniques and processes. The module addresses day-to-day implementation of cybersecurity and information security, linking theories and practices, and explaining how to link frameworks with business needs and risks in a day-to-day environment. This covers knowledge of existing frameworks and risk analysis, as well as getting management buy-in, searching for adequate solutions that are aligned with a risk appetite, implementing and following-up. Participants will be given tools that will help them make decisions in adverse conditions and seemingly hostile environments. The case study involves implementation of cybersecurity in a business environment where stakes are high and where board and  company security knowledge is limited.

General Management: Digital and Cybersecurity Leadership

Spread over the year

The module takes participants through the basics of General Management dedicated to Cybersecurity and Digital professionals. There are four parts: Finance, Strategy, Leadership and Human Capital.

In the first part participants will better understand the art and the language of finance. Topics that should be reviewed are the challenges of the income statement, balance sheet, cash, financial ratios, return on investment and working capital. In the second part fundamentals of business strategy will be introduced: SWOT analysis, types of strategy, strategic moves, seeking alignment to strategy in the implementation. The third part will be dedicated to how to build a team's self-confidence, encourage smart risk-taking, manage others with tough empathy, and give credit to others for their success. The last part is devoted to the growth of the human capital through smart recruitment, skills assessment, on-going training and performance evaluation.