International Institute for Learning, Inc.
Project Management for IT Professionals

RESILIA™ Foundation
Introduction to Cyber Resilience Best Practice1

Print Download PDF  
 
Traditional Classroom
Course No.:
Duration:
Credits:
7074
3 Days
21 PDUs / 2.1 CEUs
Virtual Classroom
Course No.:
Duration:
Credits:
1117
Six 3-hour sessions
18 PDUs / 1.8 CEUs
Prerequisites:
Course Level:

None
Basic

 
 

About the Program
AXELOS RESILIA™: Cyber Resilience Best Practice is designed to help commercial and government organizations around the world prevent, detect, and correct any impact cyber attacks will have on the information required to do business. Adding RESILIA to the existing AXELOS global best practice portfolio, including ITIL® and PRINCE2®, brings a common cyber resilience best practice for security, IT service management, and business. Active cyber resilience is achieved through people, process, and technology.

The RESILIA™ Foundation course starts with the purpose, key terms, the distinction between resilience and security, and the benefits of implementing cyber resilience. It introduces risk management and the key activities needed to address risks and opportunities. Further, it explains the relevance of common management standards and best practice frameworks to achieve cyber resilience. Subsequently, it identifies the cyber resilience processes, the associated control objectives, interactions, and activities that should be aligned with corresponding ITSM activities. In the final part of the course, it describes the segregation of duties and dual controls related to cyber resilience roles and responsibilities.

Who Should Attend
The RESILIA™ Foundation course audience includes all teams across the IT and Risk functions, including:

  • IT Service Management
  • Operations and Incident management
  • IT Change and Release management
  • IT Supplier and Vendor management
  • Business Analysis and Design
  • Business analysts
  • IT Architects
  • Development
  • IT Project and Program Management
  • Risk and Compliance
  • Information Security management
  • Business Continuity managers

What You Will Learn
Individuals certified at RESILIA™ Foundation will have demonstrated their knowledge of:

  • The purpose, benefits, and key terms of cyber resilience
  • Risk management and the key activities needed to address risks and opportunities
  • The purpose of a management system and how best practices and standards can contribute
  • Cyber resilience strategy, the associated control objectives, and their interactions with ITSM activities
  • Cyber resilience design, the associated control objectives, and their interactions with ITSM activities
  • Cyber resilience transition, the associated control objectives, and their interactions with ITSM activities
  • Cyber resilience operation, the associated control objectives, and their interactions with ITSM activities
  • Cyber resilience continual improvement, the associated control objectives, and their interactions with ITSM activities
  • The purpose and benefits of segregation of duties and dual controls

Course Benefits
“This course, for the first time, brings together the cyber resilience best practices based on a process-based life cycle refined, improved, and tested over a quarter century to assure success.” - Moyn Uddin, Lead Author of the ITpreneurs RESILIA training program, and Author of the RESILIA™: Cyber Resilience Best Practice Guide from AXELOS.

Participants in this course learn about the methods and use of preventative, detective, and corrective controls allowing them to recognize risks and to operate effectively in a challenging environment. The course provides insights into common management standards and best practice frameworks that would assist in making decisions to anticipate, counter, and/or recover accordingly from cyber-attacks. Participants, upon completing this course, would be better positioned in an organization to effectively govern, manage, and comply with cyber resilience.

Examination
Syllabus scope: understand and recognize RESILIA™: Cyber Resilience Best Practice

  • Bloom’s level: 1-2
  • Format: multiple choice
  • Number of questions: 50
  • Duration: 100 minutes
  • Exam Format: closed-book exam
  • Proctoring: live or Web-proctored

Course Overview

Introduction to Cyber Resilience

  • Describe what cyber resilience is
  • Identify the benefits of cyber resilience
  • Identify the terms
  • Identify the purpose of balancing
  • Identify the need for:
      • Confidentiality
      • Integrity
      • Availability
      • Authentication
      • Nonrepudiation

 Risk Management

  • Describe risk management
  • Identify the purpose of risk management
  • Identify the terms: risk, asset, vulnerability, threat
  • Describe actions to address risks and opportunities:
  • Establish context
  • Establish criteria for risk assessment and acceptance
  • Risk identification
  • Risk analysis and evaluation
  • Risk treatment
  • Risk monitoring and review
  • Identify the terms:
  • Risk register
  • Risk avoidance
  • Risk modification
  • Risk sharing
  • Risk retention
  • Risk treatment plan
  • Defense-in-depth

Managing Cyber Resilience

  • Identify the purpose and scope of a management system
  • Identify the components of a management system
  • Recognize the relevance of common management standards and best practice frameworks to cyber resilience
  • Describe the difference between management, governance, and compliance

Cyber Resilience Strategy

  • Identify what cyber resilience strategy is intended to achieve
  • Identify cyber resilience activities that should be aligned with IT service strategy
  • Describe the purpose and key features of the control objectives
  • Identify interactions between the following ITSM processes and cyber resilience

Cyber Resilience Design

  • Identify what cyber resilience design is intended to achieve
  • Identify cyber resilience activities that should be aligned with IT service design
  • Describe the purpose and key features of the control objectives
  • Identify interactions between the following ITSM processes and cyber resilience

Cyber Resilience Transition

  • Identify what cyber resilience transition is intended to achieve
  • Describe the purpose and key features of the control objectives
  • Identify interactions between the following ITSM processes and cyber resilience

Cyber Resilience Operation

  • Identify what cyber resilience operation is intended to achieve
  • Describe the purpose and key features of the control objectives
  • Identify interactions between the following ITSM processes and cyber resilience

Cyber Resilience Continual Improvement

  • Identify what cyber resilience continual improvement is intended to achieve
  • Recognize maturity models and their purpose
  • Describe the purpose and key features of the control objectives
  • Describe how the seven-step improvement process can be used to plan cyber resilience improvements
  • Describe how to use the ITIL CSI approach to plan cyber resilience improvements

 Cyber Resilience Roles and Responsibilities

  • Describe segregation of duties and dual controls

Summary

  • What did we learn, and how can we implement this in our work environment?

   1 RESILIA™ is a trade mark of AXELOS Limited,
     All rights reserved. Material is reproduced under license from AXELOS

 
 
©2000-2017 International Institute for Learning, Inc.