Becoming a Cybersecurity Consultant

Becoming a Cybersecurity Consultant

A Cybersecurity Consultant should perform a varied number of tasks within an organization, no matter the industry they are performing in. Within CONCORDIA, based on a desk research followed by a market validation, we have identified a set of Knowledge and Skills a Cybersecurity Consultant should have [link]. The most important ones are depicted below.

To support people in preparing for a career as Cybersecurity Consultant we have developed a COURSE and a CERTIFICATION scheme.

The COURSE aims to help individuals acquire the knowledge and skills illustrated below. The Course is suitable also for individuals planning to follow a career in cybersecurity, including middle managers and executives.

After successfully passing the exam (consisting of two parts), the Certificate would stand as a proof an individual acquired a specific set of knowledge and developed specific skills.

The course is a joint effort of the following CONCORDIA partners:

The Course “Becoming a Cybersecurity Consultant” is structured in two parts (online and face-to-face) and is organized around 3 main learning objectives:

  1. Threats – Get updated on the existing and emerging cybersecurity threats, the assets possible to be impacted, and the latest models of attacks.
  2. Technology – Become knowledgeable about specific technological threats, learn how to anticipate and prevent them, while developing proactive management skills.
  3. Economics – Get an understanding of the economics behind cybersecurity activities within your organization. Learn about risk management and information security to protect the corporate reputation and preserve customer loyalty.

The online part of the course is designed to cover theoretical concepts a Cybersecurity Consultant (low-to-medium level) should know. It is structured in 4 modules (Cybersecurity Principles; Offensive Methods, Defensive Methods; Risk Management) and is proposed to be completed in about 3-4 weeks-time while allocating about 2-3 hours a week.

Module Lesson Code Lesson title Lecturer(s) affiliation Learning Objective
Intro A0 The Cybersecurity Consultant role profile TUVA (AT)
A-CYBERSECURITY PRINCIPLES A1 CIA Triad and Security Principles University of Insubria (IT), Industrial Systems Institute (GR) LO1, LO2
A2 Software Vulnerabilities: CVE, CVSS, and beyond University of Milan (IT) LO1
A3 Privacy Principles to Manage Risks Related to Data University of Insubria (IT) LO1
A4 Accountability as success factor in this Digital Age Arthur’s Legal (NL) LO1, LO2, LO3
A5 Principles of Risk Management TUVA (AT) LO3
B-OFFENSIVE METHODS B1 Attacks Capabilities and Attacks Stages Industrial Systems Institute (GR) LO1
B2 Emerging Security Issuees and Evolving Attacks University of Milan (IT) LO1
B3 Networks Attacks University of Lorraine (FR) LO2
B4 Internet Technologies: Definition, Principles and Top Threats University of Lorraine (FR) LO2, LO3
C-DEFENSIVE METHODS C1 The Security by design Principle Approaches and Paradigms Industrial Systems Institute (GR) LO1
C2 Vulnerability Managemenet Methods University of Lorraine (FR) LO2, LO3
C3 Network Protections Methods University of Lorraine (FR) LO2, LO3
C4 OS/Application Protections Methods BITDEFENDER (RO) LO2, LO3
C5 Data Protection and Security University of Zurich (CH) LO3
C6 The SIM Approach Arthur’s Legal (NL) LO2, LO3
D-RISK MANAGEMENT D1 Overview on Risk Assessment Framework University of Zurich (CH) LO1, LO3
D2 Risk Management with an Economic Bias University of Zurich (CH) LO3
D3 Non-conformity/non compliance perspectives Arthur’s Legal (NL) LO3
D4 Digital Sovereignity Arthur’s Legal (NL) LO1, LO2, LO3

⇒ Access to the Course – online part on Coursera platform [link] – May session closed – will be re-open in October 2021

⇒ Access to the presentations used in the online part [link] – restricted to the learners who followed the course and to those registered to the C3 by CONCORDIA Certification exam

The Face-to-Face/webinar part of the course is designed to build on the theoretical concepts covered in the online part by bringing into the discussion of the group different case studies while also involving the participants in hands-on exercises. The agenda of the 3 days module is structured as follows:

⇒ Access to the presentations of the Face-to-Face/webinar part [link] – restricted to the learners who followed the course and to those registered to the C3 by CONCORDIA Certification exam

The report on the pilot course could be consulted via [link]

The next Course will be organized in the last quarter of year 2021. Registration closed. Follow us on social media for news on the next session of the course.

Following the successful attendance of the Course, both the online and the face-to-face/webinar modules, the learners could apply for the CONCORDIA Certification exam.

The Certification exam consists of two parts: a theoretical exam hosted on the ISOGRAD platform (proctored) for testing the top knowledge identified for the profile, and a practical exam hosted on the KYPO platform for testing some of the skills needed for the profile.

⇒ Access to the theoretical exam [link] – restricted to the learners registered to the C3 by CONCORDIA Certification exam

⇒ The Certification Proctor Manual for the theoretical exam [link]

⇒ Access to the practical exam [link] – restricted to the learners registered to the C3 by CONCORDIA Certification exam

The applicants to the C3 by CONCORDIA Certificate are strongly encouraged to adhere to the following Declaration of Honor [link].

A limited number of seats could be made available also to professionals who consider themselves already in the possession of the Knowledge and Skills depicted in the figure from the ABOUT chapter. Those interested in registering to the Certification exam (both parts) for C3 by CONCORDIA Certificate should send an email to and ask for the details about this opportunity.

The C3 by CONCORDIA Certificate and the relevant assessment processes are implemented based on the C3 by CONCORDIA Certification Scheme (Link).

“Becoming a Cybersecurity Consultant” –
pre-registration for the session October 2021

Registration closed. Follow us on social media for news on the next session of the course.