Becoming a Cybersecurity Consultant
The COURSE and the CERTIFICATE
A Cybersecurity Consultant should perform a varied number of tasks within an organization, no matter the industry they are performing in. Within CONCORDIA, based on a desk research followed by a market validation, we have identified a set of Knowledge and Skills a Cybersecurity Consultant should have [link]. The most important ones are depicted below.
To support people in preparing for a career as Cybersecurity Consultant we have developed a COURSE and a CERTIFICATION scheme.
The COURSE aims to help individuals acquire the knowledge and skills illustrated below. The Course is suitable also for individuals planning to follow a career in cybersecurity, including middle managers and executives.
After successfully passing the exam (consisting of two parts), the Certificate would stand as a proof an individual acquired a specific set of knowledge and developed specific skills.
The Course “Becoming a Cybersecurity Consultant” is structured in two parts (online and face-to-face) and is organized around 3 main learning objectives:
- Threats – Get updated on the existing and emerging cybersecurity threats, the assets possible to be impacted, and the latest models of attacks.
- Technology – Become knowledgeable about specific technological threats, learn how to anticipate and prevent them, while developing proactive management skills.
- Economics – Get an understanding of the economics behind cybersecurity activities within your organization. Learn about risk management and information security to protect the corporate reputation and preserve customer loyalty.
The online part of the course is designed to cover theoretical concepts a Cybersecurity Consultant (low-to-medium level) should know. It is structured in 4 modules (Cybersecurity Principles; Offensive Methods, Defensive Methods; Risk Management) and is proposed to be completed in about 3-4 weeks-time while allocating about 2-3 hours a week.
|Module||Lesson Code||Lesson title||Lecturer(s) affiliation||Learning Objective|
|Intro||A0||The Cybersecurity Consultant role profile||TUVA (AT)||–|
|A-CYBERSECURITY PRINCIPLES||A1||CIA Triad and Security Principles||University of Insubria (IT),
Industrial Systems Institute (GR)
|A2||Software Vulnerabilities: CVE, CVSS, and beyond||University of Milan (IT)||LO1|
|A3||Privacy Principles to Manage Risks Related to Data||University of Insubria (IT)||LO1|
|A4||Accountability as success factor in this Digital Age||Arthur’s Legal (NL)||LO1, LO2, LO3|
|A5||Principles of Risk Management||TUVA (AT)||LO3|
|B-OFFENSIVE METHODS||B1||Attacks Capabilities and Attacks Stages||Industrial Systems Institute (GR)||LO1|
|B2||Emerging Security Issuees and Evolving Attacks||University of Milan (IT)||LO1|
|B3||Networks Attacks||University of Lorraine (FR)||LO2|
|B4||Internet Technologies: Definition, Principles and Top Threats||University of Lorraine (FR)||LO2, LO3|
|C-OFFENSIVE METHODS||C1||The Security by design Principle Approaches and Paradigms||Industrial Systems Institute (GR)||LO1|
|C2||Vulnerability Managemenet Methods||University of Lorraine (FR)||LO2, LO3|
|C3||Network Protections Methods||University of Lorraine (FR)||LO2, LO3|
|C4||OS/Application Protections Methods||BITDEFENDER (RO)||LO2, LO3|
|C5||Data Protection and Security||University of Zurich (CH)||LO3|
|C6||The SIM Approach||Arthur’s Legal (NL)||LO2, LO3|
|D-RISK MANAGEMENT||D1||Overview on Risk Assessment Framework||University of Zurich (CH)||LO1, LO3|
|D2||Risk Management with an Economic Bias||University of Zurich (CH)||LO3|
|D3||Non-conformity/non compliance perspectives||Arthur’s Legal (NL)||LO3|
|D4||Digital Sovereignity||Arthur’s Legal (NL)||LO1, LO2, LO3|
⇒ Access to the Course – online part on Coursera platform [link] – May session closed – will be re-open in October 2021
⇒ Access to the presentations used in the online part [link] – restricted to the learners who followed the course and to those registered to the C3 by CONCORDIA Certification exam
The Face-to-Face/webinar part of the course is designed to build on the theoretical concepts covered in the online part by bringing into the discussion of the group different case studies while also involving the participants in hands-on exercises. The agenda of the 3 days module is structured as follows:
⇒ Access to the presentations of the Face-to-Face/webinar part [link] – restricted to the learners who followed the course and to those registered to the C3 by CONCORDIA Certification examThe report on the pilot course could be consulted via [link]
The next Course will be organized in the last quarter of year 2021. Registration closed. Follow us on social media for news on the next session of the course.
Following the successful attendance of the Course, both the online and the face-to-face/webinar modules, the learners could apply for the CONCORDIA Certification exam.
The Certification exam consists of two parts: a theoretical exam hosted on the ISOGRAD platform (proctored) for testing the top knowledge identified for the profile, and a practical exam hosted on the KYPO platform for testing some of the skills needed for the profile.
⇒ Access to the theoretical exam [link] – restricted to the learners registered to the C3 by CONCORDIA Certification exam
⇒ The Certification Proctor Manual for the theoretical exam [link]
⇒ Access to the practical exam [link] – restricted to the learners registered to the C3 by CONCORDIA Certification exam
The applicants to the C3 by CONCORDIA Certificate are strongly encouraged to adhere to the following Declaration of Honor [link].
A limited number of seats could be made available also to professionals who consider themselves already in the possession of the Knowledge and Skills depicted in the figure from the ABOUT chapter. Those interested in registering to the Certification exam (both parts) for C3 by CONCORDIA Certificate should send an email to email@example.com and ask for the details about this opportunity.
“Becoming a Cybersecurity Consultant” –
pre-registration for the session October 2021
Registration closed. Follow us on social media for news on the next session of the course.