Training & Education

This course is designed to provide knowledge of information security principles to IT professionals and other associated professions with an IT background including project managers, business continuity professionals, managers and executives.

We rely on the Internet for daily business operations and government service delivery. However, today’s threat environment is very different from how it was when many key Internet protocols were designed, resulting in inherent vulnerabilities that require mitigation. This course is designed to provide participants with awareness of the security issues with a range of Internet oriented technologies and protocols and practical guidance for how participants can secure them.

For many organisations, it is not a matter of ‘if’ a cybersecurity incident happens, it is a matter of ‘when’. This course is designed to provide organisations with important information and knowledge to execute one of the critical elements of incident response; preparation.

This course is designed to provide participants the confidence to perform a risk assessment of cyber security risks, the ability to rate, assess and report business risks rather than technical vulnerabilities. Calibrating cyber security as business risks rather than technical vulnerability severity readily facilitates business leader buy-in. There are no particular background knowledge requirements for this course.

This course is designed for a diverse audience, from beginners exploring data governance and its synergy with related initiatives, to those responsible for executing a data governance program, and professionals seeing to understand how effective data governance strengthens cyber security. The purpose of the course is to provide participants with knowledge about: why data governance is important, understanding stakeholder data needs and articulating effective data governance approaches, integrating data governance techniques with initiatives such as information security, data privacy, and ethics, the core components of a data governance framework, how to perform data governance ‘by stealth’. Participants will explore key elements of effective data governance using real-world examples. While we’ll reference established frameworks, our emphasis is on practical application. Upon completion, practical data governance references and templates will be provided to participants. No specific background knowledge is required. However, a basic understanding of data and information is beneficial.

Risk professionals have a thorough understanding of risk management processes but may not have a comprehensive awareness of cyber security issues. This course is designed to empower risk practitioners to effectively and confidently engage with cyber security professionals and to integrate cyber security risks into enterprise risk management processes.

Intrusions are in the news on a daily basis. Depending on the security benchmark you read, there are thousands of controls that could be deployed to protect your organisation. Consequently, the dilemma for security managers and specialists alike is how to select and implement the more effective controls. Fortunately the Australian Government openly publishes the top “Essential Eight” cyber security strategies that could have thwarted or significantly mitigated the damage from across the range of cyber intrusions they have seen impact government and industry networks. This course introduces participants to the Australian Signals Directorate’s (ASD) Essential Eight (E8) control strategies. It provides an overview of the implementation, with a special focus of the things to watch for as you prepare for an assessment against the ASD E8.

This course is designed to provide a comprehensive understanding of managing cyber risks associated with third-party suppliers and partners. It is suitable for professionals from various backgrounds, including project managers, business continuity professionals, risk managers, and executives, without requiring any prior IT knowledge.  Participants will gain a thorough insight into the importance of managing third-party cyber risks and learn how to identify and assess potential risks from third-party suppliers. The course will cover the impact of these risks on business operations and data security, and provide strategies to mitigate and manage them effectively. Attendees will stay informed about the current landscape of third-party cyber threats and learn about key controls and best practices for managing these risks. The course will also emphasise the role of continuous monitoring and vendor assessments in maintaining security.  The approach of the course includes providing an overview of third-party cyber-risk management and explaining key concepts and principles in simple, non-technical terms. A mix of engaging learning experiences, such as case studies, exercises, discussions, and interactive activities, will be used to keep participants engaged and facilitate learning. Participants will be encouraged to share their experiences and insights, fostering a collaborative learning environment. Practical examples and scenarios will be provided to illustrate how third-party risk management works in real-world situations. 

Cyber security has become an essential skill for both our personal and professional lives, as many aspects of our daily activities now take place online. Organisational cyber resilience is an entity’s ability to continue to achieve objectives by adapting and evolving in response to volatility, turbulence and shocks. Shocks can be cyber attacks, malicious acts or significant changes in conditions. This course is suitable for senior executives from any background and no technical knowledge is required.

The modern cyber world can be dangerous. For many people, business communications and processes are performed via digital mediums (internet, email, applications), which means staff and their employers are exposed to associated threats. The Cyber Security Fundamentals course was created to arm people with fundamental, practical knowledge, enabling them to be safer online and to be ‘cyber savvy’. This 3 hour course is delivered in an engaging and informative manner using a variety of learning tools including an online quiz, videos, and small and large group discussions.