Name: Mastering NIST Cybersecurity Risk Management (CSF)
Rating: 4.4 (62 reviews)

Udemy Business

Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Created byStefan Toshkov Zhelyazkov

Last updated 11/2023

English

What you'll learn

Delving into the Fundamentals of Cybersecurity Authorization and Authentication
Strategic Approaches to Cybersecurity Risk Assessment and Control
Company-Wide Exploration of Cybersecurity Threats and Vulnerabilities
Crafting Strategies for Mitigating High-Risk Scenarios
Strategic Planning for User and Network Infrastructure, Identity Management, and Access Control
Safeguarding Network Integrity with Firewall Implementation
Ensuring the Security of Active and Archived Databases
Establishing Risk Baseline Configurations and Effective Patch Management
Employing Tools and Techniques for Identifying Cybersecurity Incidents
Monitoring Employee Activities to Detect Unauthorized Physical and Electronic Access
Formulating an Actionable Cybersecurity Response Plan
Shielding Against Cyber Attacks and Defending Against Hackers
Designing and Analyzing Intrusion Detection Systems to Investigate Incidents
Vigilant Management of Supply Chain Risks in the Cybersecurity Landscape

Course content

5 sections • 39 lectures • 3h 19m total length

The NIST Framework3:07
NIST Framework Background2:55
NIST Framework Core7:43
Explore the NIST framework core and its five functions—identify, protect, detect, respond, recover—along with implementation tiers and profiles guiding risk-based cybersecurity across an organization.
Recent NIST Developments4:41

Cybersecurity Risk Planning3:45
What is a Cybersecurity Risk4:13
Asset Management3:55
Keeping Hardware Inventory Updated8:24
Keeping Software Platform Inventory4:03
Prioritizing Devices, Software and Apps3:24
Personnel Security Requirements5:28
Governance3:58
Define governance to manage regulatory, legal, risk, environmental, and operational requirements by turning policies and procedures into day-to-day actions while educating top management and treating cybersecurity as an operational risk.
Risk Assessment and Management4:02
Identify threats, assess likelihood and consequences, and apply a risk assessment framework to measure risk objectively, deploy controls, and protect assets through vulnerability management and asset inventories.
Identifying Internal and External Threats2:41
Focus on Highlighted Risk3:52
Plans for Dealing with the Highest Risk3:44

User and Network Infrastructure7:25
Authentication and Access Control5:27
Control List and Remote Access4:14
Network Security Controls9:36
Enforce network security controls by applying least privilege and separation of duties, strengthen privileged access management, enforce passwords and multi factor authentication, and apply firewall policies across segmented internal networks.
Association and Authentication5:09
Awareness and Training2:37
Data Security5:43
Protect data by implementing cryptography and safeguards for data in transit and at rest, including databases and DBMs, aligned with the organization's risk strategy to preserve confidentiality, integrity, and availability.
Hardware Integrity5:49
Information Protection6:11
Patch Management5:19
Maintenance3:30
Protective Technology4:51
Protect organizational assets with protective technology and a technical security architecture, apply least functionality, and strengthen resilience with fail safe, load balancing, and hot swap.

Developing a Continuity of Operations Plan5:27
Incident Response5:21
Executable Response Plan5:49
Importance of Communications3:04
Define clear incident response communications with roles, thresholds, and protocols; educate personnel and coordinate executive involvement with banks, authorities, regulators, and communications across the organization.
Incident Analysis8:07
Mitigation5:40
Explore post-incident risk mitigation, including isolating assets, backing up evidence, changing passwords, and discreet attacker tracing, while balancing acceptance, avoidance, and limitation strategies.
Recover10:39

Supply Chain Risk Management4:42
Investigate supply chain risk management and how multinational hardware, software, and services introduce complex threats. Identify counterfeits, unauthorized production, theft, and malicious software and hardware as key risks.
Supply Chain Management Practices3:18
Incorporating the Supply Chain Category4:24
Identify and manage supply chain risks by assessing suppliers, testing service distribution, and prioritizing high-value, high-access vendors, while aligning contracts with stakeholders to improve resilience.
Develop, Assess and Test Supply Chain Risks6:52

Requirements

Access to a Computer and Internet
English Proficiency
Eagerness to Learn

Description

In today's interconnected world, where businesses heavily rely on technology and global supply chains, cybersecurity and supply chain risk management have become paramount. This comprehensive course, "Mastering NIST Cybersecurity Risk Management (CSF)," equips you with the essential knowledge and skills to safeguard your organization's assets and operations.

Course Highlights:

Cybersecurity Expertise: Explore the intricacies of cybersecurity risk planning, asset management, personnel security requirements, and more. Learn to identify and combat internal and external threats effectively.
Network Security: Dive into the world of network security controls, authentication, access control, and data security, ensuring the protection of your organization's digital infrastructure.
Business Continuity: Develop continuity of operations plans and executable response strategies. Understand the importance of communication during incidents and how to analyse and respond to them effectively.
Supply Chain Resilience: Delve into supply chain risk management practices, incorporating supply chain categories, and the assessment and testing of supply chain risks. Gain insights into maintaining the integrity of hardware and protecting critical information.

By the end of this course, you will have the expertise to navigate the complex landscape of cybersecurity and supply chain risk management, making informed decisions to secure your organization's future in the digital era. Join us on this journey to build resilience and stay ahead in today's dynamic and interconnected business environment.

Who this course is for:

Business Professionals
IT and Cybersecurity Professionals
Students and Aspiring Professionals
Anyone Concerned About Cybersecurity

What you'll learn

Explore related topics

Course content

Introduction to NIST Framework4 lectures • 18min

Cybersecurity Risk Planning & Management12 lectures • 51min

Comprehensive Network Security and Data Protection12 lectures • 1hr 6min

Business Continuity and Incident Response Strategies7 lectures • 44min

Effective Supply Chain Risk Management4 lectures • 19min

Requirements

Description

Who this course is for: