Information Security Leadership for Government
Understanding and leading Information Security Management (ISM) in Australian Government and Defence organisations.
Enrol
5 days
In-person, On-campus
91³ÉÈ˰涶ÒôCity Campus
$4,440
Accelerate your career, learn new skills, and expand your knowledge.
First in Australia for research excellence and impact.
Top 50 in the world. 2020 QS World University Rankings.
Overview
Implementing the Australian Signals Directorate (ASD) Information Security Manual (ISM) is a vital part of cyber security responsibility for all people working with the federal government. Understanding the regulatory requirements and best practice implementation of the ISM can be challenging for leaders. Through this course you will gain the knowledge and skills needed to effectively lead the strategic direction and implementation of the ISM in your government department or organisation.
In the course you will delve into the intricacies of major international cyber security and privacy frameworks, exploring how they intersect with ASD’s Information Security Manual. You will discover strategies for implementing the ISM process and controls and learn how to effectively manage and interact with cyber security teams implementing the ISM in Australian Government and Defence settings.
Course content
In this course you will cover the topics of:Â
- Global cyber security standards including the major cyber security frameworks (ISO 2700x, NIST CSF) and privacy frameworks (ISO 2770x, NIST PRIVACY).
- How the Australian Signals Directorate’s Information Security Manual fits in with the global standards.
- Understanding the four stages of ASD’s ISM process.
- Understanding the scope and nature of the ASD's ISM cyber security controls.Â
- Planning for, and responding to breaches according to the ASD's ISM process.
- Ethical and regulatory requirements.Â
- Managing and interacting with cyber security teams.
Learning outcomes
On completion of this course, you will:Â
- Understand the major cyber security and privacy frameworks, when they are used, and how they relate to the ASD ISM.Â
- Understand the implementation process of the ASD ISM including: defining the system, selecting controls, implementing controls, assessing controls, authorising the system.Â
- Understand how implementation of ISM applies to the risk management framework approach.
- Identify and describe the four principals of ISM (govern, protect, detect, respond) from a strategic level.
- Recognise, at a strategic level, how ISM reduces breach opportunities and the damage caused by breaches.
- Know the ethical and regulatory responsibilities ISM places on places and participants.Â
- Understand the interaction between the ASD’s ISM and the NIST PRIVACY frameworks and how each apply.Â
- Understand different team structures and the various approaches to building teams and retaining people.
Who should attend
This course is ideal for:
- Experienced leaders new to cyber security leadership.
- New and experienced leaders within the Australian government.
- IT professionals seeking an introduction to cyber security strategic leadership.
- Defence or government personnel, or people who work closely with Defence or government.
Prerequisites
None
Facilitators
Matt O’Kane
Matt O'Kane is Director of Notion Digital Forensics in Sydney. Notion provides digital forensics and cyber-security services to legal professionals, businesses and individuals throughout the world. Matt draws on his experience in detailed investigation of cyber incidents to show you common pitfalls to avoid. Using his experience, Matt has trained cyber forces and cyber professionals throughout South East Asia using the latest material from real cases.
Cancellation policy
Courses will be held subject to sufficient registrations. 91³ÉÈ˰涶Òôreserves the right to cancel a course up to five working days prior to commencement of the course. If a course is cancelled, you will have the opportunity to transfer your registration or be issued a full refund. If registrant cancels within 10 days of course commencement, a 50% registration fee will apply. 91³ÉÈ˰涶Òôis a registered ACT provider under ESOS Act 2000-CRICOS provider Code 00098G.