This course goes beyond concepts with a comprehensive review of codified cybersecurity knowledge. Participants will gain practical knowledge of the eight core domains of cybersecurity, as detailed in the internationally recognized Cybersecurity Body of Knowledge (CyBOK), and their application. Using practical tools, topical examples, technical requirements and management principles, you will be able to apply the CyBOK to the real-world information and cybersecurity needs of public and private sector organizations.

Learning Outcomes

At the end of this course, participants will be able to:

  • Explain the eight key CyBOK domains.
  • Define the CyBOK structure and relevancy, as well as the differences in the eight domains.
  • Explain the structure and technical elements of each of the eight domains.
  • Explain the application of the eight domains in an organization.
  • Describe the classification applicability of the critical elements for an organization.
  • Illustrate examples of best practices in each of the eight domains.


12 hours

View Schedule and Register

No content found

No content found


Alan McCafferty is a Senior Business Analyst with 25+ years of progressive experience working with public organizations, not-for-profits, start-ups, and multi-national corporations.  Educated in Canada, the USA and Europe in multiple disciplines including Engineering, Business, Risk Management, and Lean 6 Sigma, he is the author of more than 25 white papers and the recipient of the Canada Award for Excellence. During his career, Alan has led the delivery of multi-year $1 billion+, mission critical information technology projects.  As a Cyber Security SME, Alan was key in the developed of the University of Ottawa Professional Development Institute cyber security program and teaches several of the courses.  Alan has successfully completed IT, Security, Process, Threat Risk Assessments (TRA), Privacy Impact Assessments (PIA), health and safety projects for federal government departments, provincial healthcare organizations and national not-for-profit organizations.  As a senior consultant, he uses his Lean 6 Sigma skills, along with his risk and security experience to help organizations implement low waste, and effective lean processes in areas such as information security management systems, business continuity, department security plans, quality management systems, health, and safety management systems.


Mark Hearn is a seasoned Business Leader and technical Product Management executive, bringing technology and business together to solve market problems for over 25 years. Mark’s expertise in software security and anti-reverse engineering has helped industry leaders solve critical product security issues with innovation and minimized risk. As a product security evangelist, Mark has spoken at many industry conferences and engaged in panel discussions on the need to protect software products from attack. He is an expert on the business risks associated with reverse engineering and the critical impact that hacking could have for manufacturers, and for their customers. Mark has held executive roles in product management and strategic market development, developing expertise in both the business-critical and technical functions related to business strategy, use/abuse cases, technical requirements, competitive analysis, and security threat-risk analysis.

Focus on the Details 

Effective information and cybersecurity systems must be based on domain-specific knowledge. This course builds on the industry overview presented in Information and Cybersecurity Fundamentals with a detailed study of the internationally recognized Cybersecurity Body of Knowledge (CyBOK). 

Launched in 2017, the CyBOK is the collected and codified knowledge that underpins general learning, professional training, and career development in the cybersecurity sector. The Government Communications Headquarters (GCHQ) and the National Cyber Security Center (NCSC) in the UK and the National Institute of Standards and Technology (NIST) in the U.S. recognize the CyBOK as the foundation for graduate and postgraduate programs, as well as certifications in the field.

By completing this course, you will have a detailed understanding of a wide variety of domain-specific issues, challenges, and solutions. You will be better prepared to effectively develop, implement, and manage highly complex and diverse information and cybersecurity systems in public and private sector organizations. And you will have acquired another key learning component on the path to an Information and Cybersecurity Management Certificate. 

“I needed a program that gives an edge to my professional career and an opportunity to expand my knowledge base on cybersecurity. I am happy to report that I couldn't have made a better choice. The program is highly supportive of the applicant's needs with approachable counsellors and highly knowledgeable faculties. The program increased my profile, and I was soon contacted for discussions and panel meetings in the professional circle. I gained confidence and skills to use the insights gained from my learning.”
-- Madhumita S., Ottawa, ON

Understand Context

This course provides a detailed review of the CyBOK. Using past, current, and future trends, as well as technical requirements and management principles, instructors explain how the CyBOK is applied to the real-world information and cybersecurity needs of organizations in the public and private sector.

Instructors will focus on the eight key domains covered by the CyBOK:

  • Security and risk management Information asset security
  • Security engineering
  • Communication and network security
  • Identity and access management
  • Security assessment and testing
  • Security operations Software development

Trust an Unbiased Global View

This course is technology- and policy-agnostic. It is designed, structured, and delivered based on a blend of learning processes and real-world experiences. This ensures you get a truly unbiased world view of universally applicable information and cybersecurity principles and practices presented from a neutral, Canadian perspective.

Access a Continuum of Learning

By completing the Information and Cybersecurity Management Certificate program, you will have what you need to transition to additional learning in the field or bridge to other programs offered by PDI.

The Information and Cybersecurity Management Program is an integral part of a continuum of learning ecosystem in security, cybersecurity, and other disciplines offered by the University of Ottawa Professional Development Institute (uOttawa PDI). The knowledge, skills, and abilities you acquire through this program are complementary to other offerings in PDI’s security portfolio, including:

Financial Intelligence Specialist Program

National Security and Intelligence Advance Certificate

Coding for Veterans

Cyber Skills for Canadians

Subscribe to Our Cyber Newsletter

Explore Other Programs