Course Overview

Risk management is at the center of every business decision made by an organization in reference to cybersecurity. The training program cover topics that can help senior leaders and the management team in the multi-national organization to better understand risk management and its impact on decision making at an organization. The following are the highlights of the course:

· differentiate between threats, vulnerabilities, impacts, and risks

· describe the first step of the NIST risk management framework, categorizing risk

· differentiate between different risk responses such as accepting, avoiding, mitigating, sharing, or transferring risk

· describe characteristics of risk management concepts

· identify risk assessment characteristics and options

· describe options for risk treatment

· recognize some strategies of effective vendor risk management

· describe the concept of penetration testing

· describe the concept of management review procedures