Cybersecurity

The Cyber Security Evaluation Training will teach students, in a step-by-step method, how to assess their (security) control system and informational technology network security practices against recognized industry standards. The CSET addresses the 14 Control Points and their 110 related questions found in the NIST (National Institute of Standards and Technology) 800-171 Document. Businesses who are found to be in the DoD (Department of Defense) Supply Chain are required to be compliant with these standards.

• CSET contributes to an organization’s risk management and decision-making process
• Raises awareness and facilitates discussion on cybersecurity within the organization
• Highlights vulnerabilities in the organization’s systems and provides recommendations on ways to address the vulnerability
• Identifies areas of strength and best practices being followed in the organization
• Provides a method to systematically compare and monitor improvement in the cyber systems
• Provides a common industry-wide tool for assessing cyber systems

Participants will learn how to identify gaps in the way they store, transmit and identify Controlled Unclassified Information (CUI). Participants will learn to identify where their sensitive information is stored, how it is accessed, and by whom. They will also learn how to develop a policy about access protocols including who and how access is granted. This training will greatly enhance the skills of trainee by virtue of it ability to be generically applied to any business or industry in the DoD Supply Chain that may need compliance with these regulations.

This training includes:

• IT Risk Management
• Digital Risk Management
• Vendor Risk Management
• Compliance Management
• Audit Management

Cyber Security ISO 27001 is a specification for an information security management system (ISMS). An ISMS is a framework of policies and procedures that includes all legal, physical, and technical controls involved in an organization’s information risk management processes. This helps organizations manage and protect their information assets so that they remain safe and secure. It helps you to continually review, refine, and implement changes for the future.

The key benefits of this certification include:

• Protection against information getting into unauthorized hands
• Assurance information is accurate and can only be modified by authorized users
• Assessment of the risks and mitigated the impact of a breach
• Been independently assessed to an international standard based on industry best practices

This set of resources and activities is designed to increase awareness of cybersecurity and the Defense Federal Acquisition Regulation Supplement (DFARS) requirements for small to medium-sized manufacturers (SMM).  The course contains information, links, and resources which relate to the DFARS cybersecurity requirement and the impact on SMM.

START TRAINING