"Best Practices" for Cybersecurity & GRC Professionals

4.49 (920 reviews)

Udemy

platform

English

language

Network & Security

What you will learn

This course will provide students\you, with a theoretical and Practical application of established industry "Best Practices"

Students will learn how to create a project plan for a given tasks and record their findings to complete the project using established "Best Practices"

Students will learn about 45 established "Best Practices" that can be applied to various tasks within the cybersecurity and GRC field.

Students will learn how to conduct various activities using AI-ChatGPT to execute tasks relating to established industry "Best Practices"

Students will learn how to install and conduct vulnerability scan using NESSUS, guided by established "Best Practices" as part of vulnerability Management.

Bonus- Students will learn how to plan for, and conduct an ISO 27001 Internal Audit in preparation for ISO Certification.

Students will also learn by doing given assignments.

Why take this course?

COURSE REVISED-2023 EDITION

I designed this course to provide Cybersecurity & GRC Professionals, with guidelines\ industry established "best practices" that can create a baseline; to aid in developing or implementing projects that can stand up to industry-recognized practices.

At the end of this course, you will gain the theoretical and practical application of 45 established, industry "Best Practices", covering the following areas:

1-Best Practices to help prevent\mitigate cybersecurity attacks

2-Best Practices for cloud security

3-Best Practices for conducting a cybersecurity audit

4-Best Practices for Incorporating The NIST CSF

5-Best Practices for Developing IT Security Policies

6-Best Practices for effective Incident Response

7-Best Practices for Pen Test Planning

8-Best Practices for Developing Cybersecurity Tabletop Exercises

9-Best Practices for selection of MSPs

10-Best Practices for approaching the implementation of ISO 27001

11-Best Practices for approaching the implementation of ISO 27001

12-Best Practices preparing for and maintaining PCI DSS Compliance

13-Best Practices for Data Security

14-Best Practices for Managing 3rd-Party Vendor Risk

15-Best Practices for successful Data Management

16-Best Practices for Application Security

17-Best Practices for developing a Vulnerability Management Program

18-Best Practices for Auditing a GRC Program

19-Best Practices for IT Security Compliance

20-Best Practices for Good Cyber Hygiene

21-Best Practices for Cyber Risk Management

22-Best Practices for 3rd-Party Cyber Risk Management

23-Best Practices to consider when preparing for CMMC Certification

24-Best Practices for Effective Patch Management

25-Best Practices for Building A Zero Trust Architecture

26-Best Practices for Maintaining PCI DSS Compliance

27-Best Practices for Securing Business Information with ISO 27001

28-Best Practices for conducting Cyber Risk Assessment

29-Best Practices for setting up a Strong GRC Program

30-Best Practices for Developing an Insider Threat Program

31-Best Practices-Preparing for Data Breaches and Incidents

32-Best Practices for OT Security

33-Best Practices Securing IoT

34-Best Practices for Developing a Cybersecurity Culture

35-Best Practices for Communicating Cybersecurity to the Board

36-Best Practices for GDPR Compliance

37-Best Practices for Transit Cybersecurity

38-Best Practices for Infrastructure Cybersecurity

39-Best Practices for Incident Response Planning

40-Best practices for preventing data breaches

41-Best Practices for Conducting a User Access Review

42-Best Practices for meeting SOX Compliance

43-Best Practices for meeting HIPAA Compliance

44-Assessment_Tool_Share_HIPAA

45-Best practices for applying COBIT to an organization

Content

Introduction

Course Breakdown-Walkthrough

Introduction to Best Practices

Non- Live Streamed

Best Practices for Implementing a Security Awareness Program

Best Practices for HIPAA Compliance

Best Practices for building a strong Compliance Program

Best Practices for Patch Management

Best Practices for Cyber Supply Chain Risk Management

Best Practices for MITRE ATT&CK® Mapping

Live Streamed

Best Practices for Cybersecurity

Best Practices for Developing a Cybersecurity Playbook

Best Practices for Information Security Governance

Best Practices for IT Security Compliance

Best Practices for NIST Cybersecurity Implementation

Best Practices for PCI-DSS Network Security Compliance

Best Practices for Vulnerability Management

Best Practices for ISO 27001 Implementation

Best Practices for conducting Cyber Risk Assessment

How to make your ISO 27001 Audit Successful

Course Conclusion

End of course

Additional Best Practices Resources

Useful Best Practices Guides

Screenshots

"Best Practices" for Cybersecurity & GRC Professionals - Screenshot_01

"Best Practices" for Cybersecurity & GRC Professionals - Screenshot_02

"Best Practices" for Cybersecurity & GRC Professionals - Screenshot_03

"Best Practices" for Cybersecurity & GRC Professionals - Screenshot_04

Reviews

Advar

October 11, 2023

Great, presentation. But in some tasks there could be a lot more explanations on the categories. I mostly picked up on adding in the best practices tasks on the Excel sheet and provide brief descriptions, I think reading through the articles on the Links will give me more of a better scope to really understand the tasks elaborated on the excel sheet.

Tony

September 26, 2023

So far it is very informative and detailed. I have a Cybersecurity Certificate that I acquired in 2022 but I need a refresher before I start interviewing for roles.

Prasanta

January 1, 2023

Good resources. However the the course structure should have been better. The slide should have make it better & for understandable.

Pedro

December 16, 2022

The documentation used are framework standards and articles extracted from suppliers and the internet.

Jed

December 8, 2022

As indicated in an earlier Q&A Comment: Several of the support docs are dated and need to be brought up to date, for this course to be meaningful. I appreciate the hard work you have done, but I am reminded of a perfect example of this situation. While I was in college, I happen to notice, during a lecture, the professor's lecture note were wrinkled and yellowed. This left a strong mental note for me, the only thing that matters in the learning environment is that we are teaching in the current environment. If that teaching requires a historical reference, make the point, but move to information this is current. This is specially true of the science, processes, and knowledge of the digital world we live in NOW, 12/8/2022. Again, thank you for your hard work. Jed

Charts

Price

Rating

Enrollment distribution

"Best Practices" for Cybersecurity & GRC Professionals - Distribution chart