ISACA has debuted two training courses focused on implementing the Cybersecurity Framework (CSF) from the National Institute of Standards and Technology (NIST).
The courses are the latest from ISACA’s Cybersecurity Nexus (CSX), and are built to focus on using COBIT 5 in applying the CSF. ISACA recently revamped COBIT 5’s core principles to better meet the needs of modern IT; the CSF uses it as an informative reference.
“Today’s global cybersecurity skills shortage is impacting all areas of the business, as enterprises are challenged to stay ahead of cyber-threats,” said Robert Stroud, international president of ISACA and vice president of strategy and innovation at CA Technologies. “These courses offer important training in applying COBIT 5 to contribute to the overall strength, security and resilience of an enterprise.”
NIST earlier this year issued the final CSF, as mandated by an executive order from President Obama. It offers a voluntary, methodical approach meant for organizations of all types to use to create, guide, assess or improve their cybersecurity plans, with an emphasis on information-sharing.
Implementing NIST Cybersecurity Framework Using COBIT 5 is a two-day course focused on the CSF, its goals, implementation steps, profiles, self-assessment and the ability to apply this information to help manage cyber-risk and align with an organization’s broader enterprise risk management program.
The course and exam are for individuals who have a basic understanding of security concepts, and are involved in improving the cybersecurity program for their enterprises. Basic COBIT 5 knowledge is a prerequisite for the course.
Meanwhile, the COBIT 5 Assessor for Security offering is a three-day course that provides training in performing enterprise-wide IT process assessments to help IT leaders gain C-level and board member buy-in for change and improvement initiatives. The course is similar in structure to the existing COBIT 5 Assessor course, but is security-specific—graduates will have demonstrated experience in planning, building, running and/or monitoring IT processes, and are able to provide reliable, consistent and repeatable assessments of IT process capabilities.
Individuals can apply to become a COBIT Certified Assessor after taking this course and successfully passing the exam, and individuals must pass the COBIT 5 Foundation exam before taking this course.
“We are pleased to be working with ISACA to fill a global need with these new courses,” said Richard Pharro, CEO of accreditation institute APMG International, which administers the tests. “They will help organizations understand and implement the NIST Cybersecurity Framework, helping ensure that organizations can anticipate and mitigate cyber-attacks.”