Cybersecurity Audit Foundation
Why should you attend?
The Cybersecurity Audit training course encapsulates the basic knowledge of auditing a cybersecurity program. The content of this training course incorporates the essentials of cybersecurity auditing encompassed in a two-day foundation course. Cybersecurity audits are an essential tool in testing the effectiveness and safety of the mitigation strategies that organizations employ to protect their systems against cyberattacks. Moreover, candidates will become familiarized with the key concepts of cybersecurity. These key concepts include different controls such as preventive, detective and corrective controls, and more importantly the knowledge of applying the appropriate controls to various environments. During this training course you will be able to understand the different modules of cybersecurity audit, including the cybersecurity frameworks, management of the cybersecurity risks, audit activities such as the initiation of an audit and draft of audit reports, cybersecurity controls and audit strategies.
After completing this course, you can sit for the exam and apply for the Certified Cybersecurity Audit Foundation credential. A Foundation Certificate proves that you have understood the fundamental methodologies, requirements, framework and management approach.
Who should attend?
- Individuals involved in cybersecurity management
- Individuals seeking to gain knowledge about the main processes of auditing a cybersecurity program
- Individuals interested to pursue a career in cybersecurity audit
Learning objectives
- Understand and acquire comprehensive knowledge on the components and operations of a cybersecurity program conform to ISO/IEC 27032
- Acknowledge the correlation between ISO/IEC 27032, ISO/IEC 27001, the NIST Cybersecurity Framework as well as other standards and operating frameworks
- Understand the auditor’s role: to plan, lead and follow-up on a cybersecurity audit in accordance with relevant audit standards and best practices
Educational approach
- Lecture sessions are illustrated with practical questions and examples
- Practical exercises include examples and discussions
- Practice tests are similar to the Certification Exam
Prerequisites
None
Course agenda
Day 1: Fundamental concepts and principles of cybersecurity and cybersecurity auditing
Day 2: Introduction to cybersecurity audit criteria and the cybersecurity auditing process & Certification Exam
Examination
The Certified Cybersecurity Audit Foundation exam fully meets the requirements of the Examination and Certification Program (ECP). The exam covers the following competency domains:
Domain 1: Fundamental concepts and principles of cybersecurity and cybersecurity auditing
Domain 2: Introduction to cybersecurity frameworks, audit criteria and auditing process
For more information about exam details, please visit Examination Rules and Policies.
Certification
After successfully completing the exam, you can apply for the credential shown on the table below. For more information about Cybersecurity Audit certifications and the certification process, please refer to Certification Rules and Policies.
Credential |
Exam |
Professional experience |
MS audit/assessment experience |
Other requirements |
Certified Cybersecurity Audit Foundation | Certified Cybersecurity Audit Foundation exam or equivalent | None | None | Signing the Code of Ethics |
General Information
- Certification fees are included on the exam price.
- Training material containing over 200 pages of information and practical examples will be distributed to participants.
- A participation certificate of 14 CPD (Continuing Professional Development) credits will be issued.
- In case of exam failure, you can retake the exam within 12 months for free.