• Course Outline:

  1. Introduction to Cybersecurity and Internet Security

  o Overview of cybersecurity challenges

  o Understanding the role of ISO/IEC 27032 in addressing internet security risks

  2. Cybersecurity Governance and Strategy

  o Developing a cybersecurity strategy

  o Aligning cybersecurity with business objectives

  o Differences between the older version (2012) and the newer version (2023) in

  terms of strategic focus and alignment

  3. Risk Management and Threat Assessment

  o Identifying cyber threats and vulnerabilities

  o Risk assessment methodologies

  o Updates in risk management practices from the older to the newer version

  4. Security Controls and Implementation

  o Implementing security controls for internet security

  o Best practices for securing networks, systems, and data

  o Changes in control recommendations between the two versions

  5. Incident Response and Recovery

  o Developing an incident response plan

  o Handling cybersecurity incidents

  o Enhancements in incident response guidelines in the updated version

  6. Legal and Regulatory Aspects of Cybersecurity

  o Understanding legal frameworks related to internet security

  o Compliance requirements

  o Any legal changes reflected in the newer version

  7. Security Awareness and Training

  o Educating stakeholders on cybersecurity best practices

  o Training programs for employees

  o Considerations for training content based on the updated standard

• Cybersecurity Professionals: Individuals responsible for protecting organizations

from cyber threats.

• IT Managers: Managers overseeing IT infrastructure and needing to understand

cybersecurity risks.

• Risk Managers: Professionals involved in risk assessment and management within

the IT sector.

• Compliance Officers: Those ensuring that organizations meet regulatory and legal

cybersecurity requirements.

• Network Administrators: Personnel in charge of network security and maintenance.
• Security Analysts and Consultants: Experts providing advice on cybersecurity

measures and strategies.

• Data Protection Officers: Individuals responsible for safeguarding data and privacy

within organizations.

• Business Continuity Managers: Managers tasked with maintaining business

operations during and after cyber incidents.• C-Level Executives: Senior executives who need to have an understanding of

cybersecurity to make informed decisions.

• overseeing an organisation’s information security compliance status. 

• Duration of the written exam is 120 minutes. Minimum passing criteria is 70% in both continuous assessment and online examination.

CERTIFICATION

Candidates who scores 70% and above in both the continuous assessment and written examination will be issued a TÜV SÜD certificate. Unsuccessful candidates will be issued a certificate of attendance.