Cybersecurity Third-Party Risk Management Course

Cybersecurity Third-Party Risk Management

Learn to identify, assess, and mitigate cybersecurity risks posed by third-party vendors and suppliers.

(CYBERSEC-TP-RISK.AE1) / ISBN : 978-1-64459-367-7

Lessons

Lab

TestPrep

AI Tutor (Hinzufügen Auf)

105 Rezension

Holen Sie sich eine kostenlose Testversion

Dieser Kurs beinhaltet:

Kostenlose Vorab-Einschätzung und die ersten beiden Unterrichtsstunden

17+ Unterricht | 184+ Übungen

Auch auf dem Handy und Tablet zugänglich

Abschlusszertifikat

Über diesen Kurs

Our third-party cyber risk course focuses on the growing threat of cyberattacks and supply chain vulnerabilities. Learn to identify and mitigate cybersecurity threats, conduct thorough due diligence on third-party vendors, and establish effective risk management strategies. Explore topics such as supply chain attacks, cloud security, data privacy, and compliance regulations.

Fähigkeiten, die Sie erwerben werden

Identify and assess potential cybersecurity risks posed by third-party vendors and suppliers
Conduct thorough due diligence on third-party vendors to evaluate their security practices and compliance with industry standards
Use supply chain security best practices to prevent attacks and data breaches
Take actions to ensure compliance with the relevant cybersecurity regulations and standards (e.g. GDPR, HIPAA, PCI DSS)
Implement strategies based on cybersecurity frameworks such as NIST Cybersecurity Framework and ISO 27001
Maintain a proactive cybersecurity posture and continuously improve risk management processes

Unterricht

17+ Unterricht | 184+ Übungen | 131+ Tests | 136+ Karteikarten | 136+ Glossar der Begriffe

Testvorbereitung

60+ Fragen vor der Beurteilung | 60+ Fragen nach der Bewertung |

Praktische Übungen

17+ LiveLab | 17+ Videoanleitungen | 48+ Minutes

Unterrichtsplan

Introduction

Who Will Benefit Most from This Course?

What Is the Risk?

The SolarWinds Supply‐Chain Attack
The VGCA Supply‐Chain Attack
The Zyxel Backdoor Attack
Other Supply‐Chain Attacks
Problem Scope
Compliance Does Not Equal Security
Third‐Party Breach Examples
Conclusion

Cybersecurity Basics

Cybersecurity Basics for Third-Party Risk
Cybersecurity Frameworks
Due Care and Due Diligence
Cybercrime and Cybersecurity
Conclusion

What the COVID‐19 Pandemic Did to Cybersecurity and Third‐Party Risk

The Pandemic Shutdown
SolarWinds Attack Update
Conclusion

Third‐Party Risk Management

Third‐Party Risk Management Frameworks
The Cybersecurity and Third‐Party Risk Program Management
The Kristina Conglomerate (KC) Enterprises
Conclusion

Onboarding Due Diligence

Intake
Cybersecurity Third‐Party Intake
Conclusion

Ongoing Due Diligence

Low‐Risk Vendor Ongoing Due Diligence
Moderate‐Risk Vendor Ongoing Due Diligence
High‐Risk Vendor Ongoing Due Diligence
“Too Big to Care”
A Note on Phishing
Intake and Ongoing Cybersecurity Personnel
Ransomware: A History and Future
Conclusion

On‐site Due Diligence

On‐site Security Assessment
On‐site Due Diligence and the Intake Process
Conclusion

Continuous Monitoring

What Is Continuous Monitoring?
Enhanced Continuous Monitoring
Third‐Party Breaches and the Incident Process
Conclusion

Offboarding

Access to Systems, Data, and Facilities
Conclusion

Securing the Cloud

Why Is the Cloud So Risky?
Conclusion

Cybersecurity and Legal Protections

Legal Terms and Protections
Cybersecurity Terms and Conditions
Conclusion

Software Due Diligence

The Secure Software Development Lifecycle
On‐Premises Software
Cloud Software
Open Web Application Security Project Explained
Open Source Software
Mobile Software
Conclusion

Network Due Diligence

Third‐Party Connections
Zero Trust for Third Parties
Conclusion

Offshore Third‐Party Cybersecurity Risk

Onboarding Offshore Vendors
Country Risk
KC's Country Risk
Conclusion

Transform to Predictive

The Data
Level Set
A Mature to Predictive Approach
The Predictive Approach at KC Enterprises
Conclusion

Conclusion

Praktische LAB-Aktivitäten

Cybersecurity Basics

Simulating the DoS Attack
Performing a Phishing Attack
Performing Local Privilege Escalation

What the COVID‐19 Pandemic Did to Cybersecurity and Third‐Party Risk

Establishing a VPN Connection

Ongoing Due Diligence

Getting the TCP Settings and Information about the TCP Port
Detecting a Phishing Site Using Netcraft

Continuous Monitoring

Analyzing Malware

Offboarding

Supplying Power to a SATA Drive

Securing the Cloud

Creating an Elastic Load Balancer
Working with Amazon S3

Software Due Diligence

Attacking a Website Using XSS Injection
Fuzzing Using OWASP ZAP
Setting Up a Basic Web Server

Network Due Diligence

Studying CVSS Exercises with the CVSS Calculator
Setting up a DMZ
Enabling the TPM

Offshore Third‐Party Cybersecurity Risk

Using the Windows Firewall

Lab

CCNA 200-301 Pearson uCertify Network Simulator

ISBN-Nummer: 9781616918378
200-301-SIMULATOR.AB1

Kaufe jetzt

Lessons Lab

Accounting All-in-One

ISBN-Nummer: 9781644594490
ACCOUNTS.AE1

Kaufe jetzt

Lessons TestPrep

ACCUPLACER For Beginners

ISBN-Nummer: 9781644595732
ACCUPLACER.AE1

Kaufe jetzt

Lessons TestPrep

ACT Prep 2024

ISBN-Nummer: 9781644594889
ACT-PREP.AE1

Kaufe jetzt

Lessons Lab TestPrep AI Tutor

Artificial Intelligence on Amazon Web Services

ISBN-Nummer: 9781644592151
AI-AWS.AJ1

Kaufe jetzt

Lessons TestPrep AI Tutor

Artificial Intelligence and Big Data

ISBN-Nummer: 9781644591444
AI-bigdata

Kaufe jetzt

Lessons Lab TestPrep AI Tutor

Artificial Intelligence for Business

ISBN-Nummer: 9781644593004
AI-BUS.AP1

Kaufe jetzt

Cybersecurity Third-Party Risk Management