PECB recently launched Lead Cloud Security Manager course and certification. This course is developed based on ISO 27017 and ISO 27018. ISO 27017 provides guidance to implement controls for cloud services and ISO 27018 provides guidance to implement controls to protect PII in public clouds acting as PII processors. This is well designed course which... Continue Reading →
I recently happened to download the Risk IT Framework, 2nd Edition from ISACA. During December 2019 the National Cyber Security Center of United Kingdom released the Cyber Security Body of Knowledge (CyBok 1.0). The CyBok has 19 knowledge areas which are grouped into five categories. This a very detailed body of knowledge that will be... Continue Reading →
IT General controls (ITGC's) are applicable to any information systems infrastructure. These controls are primarily in the following areas: Access Management (assess to data and programs), Change Management (Changes to programs and data), Systems development (feasibility, design, Testing, installation, version control, Move to production) , IT Operations (Backup, Incident Management, Job monitoring, Batch processing, etc).... Continue Reading →
Completed an PECB ISO 27001 Lead Implementer course in Hyderabad on June 30.
October 2018 report by (ISC)2 finds that Cybersecurity workforce gap is at 2.9 million and of which 2.1 million is in Asia Pacific. You can download the report here: https://www.isc2.org/Research/Workforce-Study
Flipped classroom, also called blended learning is a method where learners are provided with resources to read and prepare before they arrive in the class and learners then participate in activities and engage in group discussions. This is a learner centered approach and focuses more on application of conceptual knowledge. With a variety of free... Continue Reading →