Expert training in Cyber Security
Enrollment
02.12.2023 - 09.01.2024
Timing
08.01.2024 - 30.04.2024
Number of ECTS credits allocated
5 op
Mode of delivery
Contact teaching
Unit
Engineering and Business
Teaching languages
- Finnish
Degree programmes
- Expert training in Cyber Security
Teachers
- Jani Ekqvist
Groups
-
OSKYBEK24Cyber Security Expert in Higher Education Administration
Objective
After completing the course, the student can take an adversarial view of the organization’s own information systems and identify the attack surface. Student is able to find and exploit vulnerabilities in the system using common offensive tools. Student understands the effect the vulnerabilities have to the security of the organization’s information systems and is able to communicate it effectively to all stakeholders.
Content
- Penetration testing methods and processes
- Ethical and legal considerations
- Testing tools and techniques
- Reporting
Evaluation scale
H-5
Enrollment
02.12.2023 - 31.01.2024
Timing
01.01.2024 - 31.07.2024
Number of ECTS credits allocated
5 op
Mode of delivery
Contact teaching
Unit
Engineering and Business
Teaching languages
- Finnish
Degree programmes
- Expert training in Cyber Security
Teachers
- Jani Ekqvist
- Pia Satopää
Groups
-
OSKYBEK24Cyber Security Expert in Higher Education Administration
Objective
The student will
• Understand the administrative and technical basics of information and cybersecurity
• Recognize the operational environment and threats, and be able to assess the impact of information and cybersecurity on organizational operations
• Understand the significance of a security culture for information and cybersecurity
• Be capable of planning, drafting, and implementing an information security policy for the organization
• Recognize the importance of information classification for safeguarding organizational information and be able to classify information and information systems
• Grasp the importance of competence and awareness in achieving information and cybersecurity
• Be able to assess the organization's level of cybersecurity competence (maturity) and plan and implement an organizational cybersecurity awareness program/training (awareness)
• Identify the importance of risk management in achieving information and cybersecurity
• Understand the significance of assessments and audits for continuous improvement
Content
• Operational environment and threats
• Impact and influence
• Competence and awareness
• Information security culture
• Information security policy, guidelines, models, frameworks
• Information classification
• Risk management and controls
• Auditing
SUMMARY
Upon completing the course, the student will possess a comprehensive understanding of information and cybersecurity concepts, as well as practical skills to assess and enhance the level of information and cybersecurity competence within an organization. The student will be capable of contributing to the planning and implementation of effective administrative controls, trainings, and policies related to information and cybersecurity. They will have the capability to assess the security situation and plan development measures.
Evaluation scale
H-5
Enrollment
02.12.2023 - 31.01.2024
Timing
01.01.2024 - 31.07.2024
Number of ECTS credits allocated
5 op
Mode of delivery
Contact teaching
Unit
Engineering and Business
Teaching languages
- Finnish
Degree programmes
- Expert training in Cyber Security
Teachers
- Jani Ekqvist
- Pia Satopää
Groups
-
OSKYBEK24Cyber Security Expert in Higher Education Administration
Objective
Students will be able to:
• Comprehend the basics of information and cyber security management
• Recognize management's responsibility for information and cyber security
• Identify the significance of information and cyber security for organizational business operations
• Evaluate the organization's competency level in information and cyber security and design and implement training programs
• Understand processes, management tools, and personnel and supply chain-related aspects of information and cyber security management
• Effectively assess risks in the cyber operational environment
• Appreciate the importance of situational awareness in crisis management
• Comprehend the content and significance of an Information and Cyber Security Management and Governance System (ISMS) for the organization
• Design and implement an ISMS and tailor it to the organization's specific needs
• Understand the importance of supply chain and contract management for the organization's information and cyber security
• Plan business preparedness and understand its alignment with the organization's strategy and business processes
• Recognize the importance of crisis management plans, crisis communication, and leadership training
SUMMARY
This course provides students with a comprehensive understanding of information and cyber security management and leadership, covering topics such as risk management, preparedness, continuity management, recovery, supply chain, and contract management, and the implementation of an Information and Cyber Security Management and Governance System (ISMS). Students will also understand the importance of situational awareness in crisis management and will be equipped to plan and implement effective strategies. By the end of the course, students will have the skills to design and implement an ISMS, evaluate risks, develop preparedness plans, and comprehend the significance of these practices in maintaining a secure organizational environment.
Content
• Fundamentals of Information and Cyber Security Management
• Risk Management as a Part of Leadership
• Preparedness, Continuity Management, and Recovery
• Supply Chain and Contract Management
• Information and Cyber Security Management and Governance System (ISMS)
• Leadership Situational Awareness
• Training as a Component of Management and Governance
Evaluation scale
H-5