Course Information
Auditing a Cybersecurity Program
Parking for SAO, Professional Development courses is in Garage B (1511 San Jacinto Blvd.). The Garage signage may read 1511 San Jacinto or Garage B. The elevator in Garage B is not reliable. If you are unable to walk the stairs, please contact the professionaldevelopment@sao.texas.gov for alternate parking arrangements. Handicapped parking is free at the meters around the downtown area.
A course coordinator will Email you a parking permit prior to the course start date. A permit must be displayed or you will be ticketed.
Course Description
The audit risk universe is expanding faster than in any time in recent memory. One particular area of explosion is regarding cybersecurity as exploits over the last several years have heightened the awareness of senior leaders and boards alike.
Auditors need to be able to assess the effectiveness of an enterprises cybersecurity program. They need to understand what controls are needed, where the controls should be positioned and how to perform substantive tests to assess the controls reasonable effectiveness specifically related to cybersecurity.
During this seminar attendees will have the opportunity to conduct a mock cybersecurity program audit. By the end of the session attendees will be armed with knowledge of how to perform an assessment on a company's cybersecurity program and should become more valued members of their organization's cyber defense team.
Attendees will leave this session with audit and self-assessment checklists along with examples of various cybersecurity program artifacts.
Course Objectives
Upon completion of this course, participants will be able to:
-
Assess the effectiveness of a cybersecurity program
-
Conduct a cybersecurity audit
-
Identify, position, and test cybersecurity controls
Vulnerability Assessment
• assessment components
• conducting
• evaluating
• self-assessment
• audit
Threat Analysis
• assessment components
• conducting
• evaluating
• self-assessment
• audit
Cybersecurity Risk Assessment
• assessment components
• conducting
• evaluating
• self-assessment
• audit
Cybersecurity Program
• assessment components
• conducting
• evaluating
• self-assessment
• audit
Conducting a Cybersecurity Audit Based on the Top 20 Controls Identified in CIS Critical Security Controls V6.1
• inventory authorized and unauthorized devices
• inventory authorized and unauthorized software
• secure configurations
• continuous vulnerability assessment and remediation
• control use of administrative privileges
• maintenance, monitoring and analysis of audit logs
• email and web browser protection
• malware defenses
• limitation and control of network ports, protocols and services
• data recovery capability
• security configurations for network devices
• boundary defenses
• data protection
• controlled access based on need to know
• wireless access control
• account monitoring and control
• security skills assessment and training
• application software security
• incident response and management
• penetration test and red team exercises
Instructors
MBA, CISA, COBIT 5.0 Assessor, ISO 38500
Mark Edmead is the Managing Director at MTE Advisors and a Senior Instructor for MIS Training Institute. Mr. Edmead is a 30-year-veteran of computer systems architecture, information security, and project management. He has extensive knowledge of IT and application audits, IT governance, and SOX compliance auditing. He holds CISA, CISSP, DevOps, Lean IT, TOGAF 9.1 certifications, and is a COBIT 5.0 Certified Assessor. His focus is on IT Transformation, leadership, change management, process improvement, enterprise architecture, technology road mapping, strategic IT planning, IT organization analysis, IT portfolio management, and IT governance. He has worked with many international firms, and has the unique ability to explain very technical concepts in simple-to-understand terms. Mr. Edmead has authored articles in Compliance Advisor Magazine, IT Compliance Journal, IIA Insights, and The Auditor. In addition, he is an adjunct professor at the Keller Graduate School of Management.
Additional Information
TAC Rule 523.142(g) requires the CPE Sponsor to monitor individual attendance and assign the correct number of CPE credits. Participants will be asked to document their time of arrival and departure in compliance with this Rule. Additionally, attendance will be monitored throughout the day and CPE certificates will reflect actual attendance of each participant.
If you are making travel plans to come to Austin, we recommend making "refundable" air and hotel reservations or waiting until 14 days before the class to actually book your reservations. Courses are occasionally canceled or rescheduled due to low enrollment. We determine whether a course has enough participants 16 days prior to the course date. If we cancel or reschedule, we will email the participant and his or her billing contact no later than 14 days before the original class date.
The course coordinator will contact you with parking information. Handicapped parking is free at the meters around the downtown area.
Vending machines with Coca-Cola products and various snack items are available. There is also a refrigerator and microwave in our coffee bar area. Feel free to bring in your own drinks and food if you prefer.
You might want to bring a light sweater or jacket, as room temperatures vary.
To see answers to our Frequently Asked Questions, visit http://www.sao.texas.gov/training/faq.html.