NIST Cyber Security Framework Implementation
Information is a key resource for all enterprises and technology plays a significant role. Today, Information
Technology (IT) is increasingly advanced and pervasive. Attacks upon IT are also increasing. Destructive attacks
against financial, retail, and energy providers indicate a need for renewed dedication to management of IT-related
risk at an acceptable level for each organization. To that end, U.S. President Obama issued Executive Order 13636,
“Improving Critical Infrastructure Cybersecurity,” on February 12, 2013. The Executive Order called for
development of a voluntary risk-based cybersecurity Framework that is “prioritized, flexible, repeatable,
performance-based, and cost-effective”; it was developed by the National Institute of Standards and Technology
(NIST) in partnership with an international community of small and large organizations, including owners and
operators of the nation’s critical infrastructure. The training and examination will explain how these measures can
be implemented, using COBIT 5.
What the course will do?
ISACA offers professionals who have mastered the content in the COBIT 5 Foundation Course an opportunity to
demonstrate their knowledge by taking an exam and earning a certificate of completion. These professionals
understand the goals and content of the Cybersecurity Framework and how implement the seven Cybersecurity
Framework implementation steps using COBIT 5.
At the conclusion of this course, attendees will understand:
· Levels of IT-related risk and make informed decisions to reduce information security incidents
· Awareness of business impacts
· Understanding relationship of business systems and their associated risk appetite
· Understanding of business requirements and mission objectives and their priorities
· Enhanced view of the operational environment to discern the likelihood of a cybersecurity event
· Understanding of cyber threats to the business units and their mission objectives
· Understanding of all compliance requirements for each business unit
· Understanding of security controls and their importance in managing operational security risks
· Detailed understanding of required actions to close gaps in cybersecurity requirements
· Understanding of cybersecurity requirements for their associated business systems
Who should attend?
o IT auditors
o IT managers
o IT quality professionals
o IT leadership
o IT developers
o Process practitioners and managers in IT service providing firms
o Business managers
• Successful completion of the COBIT 5 Foundation Exam
• Successful completion of accredited NIST Framework Implementation using COBIT 5 Course
o Objective testing
o 75 questions per paper with 1 mark available per question.
o 5 questions are trail questions and will not count to the final mark.
o 35 mark or more required to pass (out of 75 available)
o 80 minutes duration
o Closed book
This course is accredited by APMG
COBIT® 5 is a registered trademark of ISACA