Auditing Cybersecurity

Information security risk has evolved dramatically over time. However, many of the strategies that are deployed to manage this risk are not adequately addressing the true security needs. Attackers are capable of bypassing perimeter defenses to target organization information assets. Attacks are more sophisticated and difficult to detect. The Auditing Cybersecurity course focusses on the key controls that should exist to provide a strong cybersecurity posture, including the capabilities to protect, detect, respond and recover from cybersecurity incidents. A number of different standards such as ISO 27001, NIST 800-53 and the NIST Cybersecurity Framework will be looked at throughout this course. The course also investigates key controls that should be in place, including how auditors can successfully audit for the effectiveness of controls. Students are required to bring a laptop in order to ensure that the handson exercises can be completed. The laptop should meet the following specifications: USB Port 8 GB RAM or higher 25 GB available hard drive space Windows 7 professional or later Administrator privileges including the capability to install and run tools, as well as disable anti-virus VMWare Player should be installed Level: Intermediate, 21 CPE


Tuesday, March 20, 2018 - Thursday, March 22, 2018
8:30 AM - 5:00 PM


Institute of International Education (IEE), 809 United Nations Plaza,
809 United Nations Plaza,
New York, New York 10017


Education Committee

View Desktop Site