Axelos Resilia Practitioner (MC-RSP)

This course builds on the Foundation course to teach business, IT, Security, Risk and Compliance professionals how to create and manage risk resilience improvement plans based on real-life scenarios.

Type

Certified Training Course

Level

Intermediate

Cost

R 9 900 p.p. (Excl VAT)

SATV Redeemable 

N/A

Delivery Method

Classroom-based, Instructor-led training.

Duration

2 days

Start time: 09:00 (Registration will commence at 08:30 on the first day)

Prerequisites

The knowledge and skills that a learner must have before attending this course is as follows:

  • Succesful completion of the RESILIA™ Foundation Course and Exam (Certification)

Course Objectives

At the end of this course, you should be able to:

  • Carry out risk management. 
  • Manage the controls relevant to cyber resilience strategy and align these with IT service management (ITSM). 
  • Manage the controls relevant to cyber resilience design and align these with ITSM. 
  • Manage the controls relevant to cyber resilience transition and align these with ITSM. 
  • Manage the controls relevant to cyber resilience operation and align these with ITSM. 
  • Manage the controls relevant to cyber resilience continual improvement and align these with ITSM. 
  • Evaluate need for segregation of duties and dual controls.

Exam & Certifications

Completion of this course satisfies the prerequisite for taking the Resilia Practitioner Exam. Successfully passing this exam will result in the attainment of the Resilia Practitioner Exam.

  • Syllabus scope: understand and recognize RESILIA™: Cyber Resilience Best Practice 
  • Bloom’s level: 3-4 
  • Format: Multiple Choice 
  • Number of questions: 50 
  • Duration: 135 minutes 
  • Pass rate: 60% 
  • Exam Format: closed book exam

Course Topics

1. Risk Management

  • Distinguish between the terms: risk, asset, vulnerability, threat
  • Determine the actions needed to address risks and opportunities and explain their purpose
  • Create and manage a:
    • Risk register
    • Risk treatment plan

2. Cyber Resilience Strategy

  • Explain the purpose and use of the control objectives:
    • Establish governance
    • Manage stakeholders
    • Identify and categorise stakeholders
    • Create and manage cyber resilience policies
    • Manage audit and compliance
  • Explain how ITSM processes and cyber resilience interact

3. Cyber Resilience Design

  • Explain the purpose and use of the control objectives:
    • Human resource security
    • System acquisition, development, architecture and design
    • Supplier and 3rd party security
    • Endpoint security
    • Cryptography
    • Business continuity
  • Explain how ITSM processes and cyber resilience interact

4. Cyber Resilience Transition

  • Explain the purpose and use of the control objectives:
    • Asset management and configuration management
    • Classification and handling
    • Data transportation and removable media
    • Change management
    • Testing
    • Training
    • Documentation management
    • Information retention
    • Information disposal
  • Explain how ITSM processes and cyber resilience interact

5. Cyber Resilience Operation

  • Explain the purpose and use of the control objectives:
    • Access control
    • Network security management
    • Physical security
    • Operations security
    • Incident management
  • Explain how ITSM processes and cyber resilience interact

6. Cyber Resilience Continual Improvement

  • Explain the purpose and use of the control objectives:
    • Audit and review
    • Control assessment
    • Key Performance Indicators
    • Business continuity improvements
    • Process improvements
    • Remediation and improvement planning
    • Apply the seven-step improvement process to plan cyber resilience improvements
  • Apply the ITIL CSI approach to cyber resilience

7. Segregation of Duties and Dual Controls

  • Apply the concepts of segregation of duties and dual controls to an organisational context