Description

In this course, participants focus on the practical, hands-on implementation of InfoSec and ISMS solutions. First, participants will learn how to implement an effective and appropriate ISMS by analyzing the culture, risk-based thinking, implementation, management, and business needs of an organization. Next, participants will apply their implementation skills and abilities in a series of practical exercises, scenarios, and case studies.

It is strongly recommended to have completed the following courses before registration:

Learning Outcomes

At the end of this course, participants will be able to:
  • Articulate the importance of the organizational profile, and culture, within InfoSec and ISMS.
  • Analyze InfoSec threats and vulnerabilities using structured situational awareness method.
  • Associate risk management strategy to the organizational profile.
  • Explain the elements and the implementation process of an effective ISMS.
  • Break down the key elements from an ISMS, including policies, processes, procedures, and controls.
  • Articulate how to conduct a TRA and PIA.

Duration

12 hours

View Schedule and Register

No content found

No content found

Instructors

Alan McCafferty is a Senior Business Analyst with 25+ years of progressive experience working with public organizations, not-for-profits, start-ups, and multi-national corporations.  Educated in Canada, the USA and Europe in multiple disciplines including Engineering, Business, Risk Management, and Lean 6 Sigma, he is the author of more than 25 white papers and the recipient of the Canada Award for Excellence. During his career, Alan has led the delivery of multi-year $1 billion+, mission critical information technology projects.  As a Cyber Security SME, Alan was key in the developed of the University of Ottawa Professional Development Institute cyber security program and teaches several of the courses.  Alan has successfully completed IT, Security, Process, Threat Risk Assessments (TRA), Privacy Impact Assessments (PIA), health and safety projects for federal government departments, provincial healthcare organizations and national not-for-profit organizations.  As a senior consultant, he uses his Lean 6 Sigma skills, along with his risk and security experience to help organizations implement low waste, and effective lean processes in areas such as information security management systems, business continuity, department security plans, quality management systems, health, and safety management systems.

 

Mark Hearn is a seasoned Business Leader and technical Product Management executive, bringing technology and business together to solve market problems for over 25 years. Mark’s expertise in software security and anti-reverse engineering has helped industry leaders solve critical product security issues with innovation and minimized risk. As a product security evangelist, Mark has spoken at many industry conferences and engaged in panel discussions on the need to protect software products from attack. He is an expert on the business risks associated with reverse engineering and the critical impact that hacking could have for manufacturers, and for their customers. Mark has held executive roles in product management and strategic market development, developing expertise in both the business-critical and technical functions related to business strategy, use/abuse cases, technical requirements, competitive analysis, and security threat-risk analysis.

Applied Acquired Knowledge

Understanding the information and cybersecurity landscape is important. Knowing how to apply that knowledge to protect the information, data, and networks of an organization is the key to a successful career in the field.

While the first three courses in the Information and Cybersecurity Management Certificate program are designed to help you acquire knowledge, this one is laser-focused on the application of that knowledge in the real world. It is structured to help you develop the comprehension, application, analysis, synthesis, and evaluation skills you need to truly apply what you have learned to develop effective protection systems.

By completing this course, you’ll be equipped to implement and manage effective and comprehensive information and cybersecurity systems that align with the real-world business needs of any organization in any industry. And you will have acquired another key learning component on the path to an Information and Cybersecurity Management Certificate.

“Comprehensive, well-paced program. Uses real-world examples in a lecture-based format as well as a capstone project to move you from theory to practice. There is something for everyone: the beginner (even at executive level) needing a solid foothold on practices and issues, to the cybersecurity professional wanting a refresher. Highly recommend.”
-- Jacky T., Former Federal Public Servant

Focus on Development 

Drawing on decades of real-world experience, instructors take an in-depth look at the design and application of effective information and cybersecurity systems, and take you through the process of developing:

  • Strategies that align with an organization’s culture
  • A compliant information security management system
  • An effective information risk management system
  • A business continuity and disaster recovery program
  • A Threat Risk Assessment (TRA)
  • A Privacy Impact Assessment (PIA)

Trust an Unbiased Global View

This course is technology- and policy-agnostic. It is designed, structured, and delivered based on a blend of learning processes and real-world experiences. This ensures you get a truly unbiased world view of universally applicable information and cybersecurity principles and practices presented from a neutral, Canadian perspective.

Access a Continuum of Learning

By completing the Information and Cybersecurity Management Certificate program, you will have what you need to transition to additional learning in the field or bridge to other programs offered by PDI.

The Information and Cybersecurity Management Program is an integral part of a continuum of learning ecosystem in security, cybersecurity, and other disciplines offered by the University of Ottawa Professional Development Institute (uOttawa PDI). The knowledge, skills, and abilities you acquire through this program are complementary to other offerings in PDI’s security portfolio, including:

Financial Intelligence Specialist Program

National Security and Intelligence Advance Certificate

Coding for Veterans

Cyber Skills for Canadians

Subscribe to Our Cyber Newsletter

Explore Other Programs