Cyber Security_sabah-2

OVERVIEW : CYBER SECURITY SEMINAR
Cyber security skills are essential to any organisation committed to addressing the increasing risk of cyber-attack.
The Cyber Security Seminar is designed to ensure all stakeholders in developing high tech solutions understand
the complexity and the need for action in the cybersecurity arena. It is hoped that Senior Excutives and C-Level
and Senior Executives from government agencies, enterprises, military and police personals in need of innovative
solutions to protect their company or department’s critical infrastructure with cutting-edge technologies. The
seminar will provide a forum to learn more about the latest cyber threat landscape and evaluate the industry’s
most cutting edge solutions available.
The IoT, connected cars, new payment systems, VR and AR, wearables and our mobile devices all add new levels
of concern to protecting our personal and corporate data. Mr Richard Bingley, the with his wide experiences in
the cyber security arena will share with the participants on the best mode to tackle the world of cybersecurity that
demands we go far beyond the simple passwords and anti-virus protection of yesterday.
SEMINAR OBJECTIVES:
Cyber Security skills are essential to any organisations committed to addressing the increasing risk from
cyber-attack. Participants will have a better understanding of the complexity of Cyber Security and its
developments in the following areas:
• Cyber Security : Expecting the Unexpected
• Network Architecture,Communications and protocols
• Mobile Data Risk and Lone Travellers
• Investigation and Incident Response
• Future-proofing your Business
• Build Your Own Business Cyber Security Toolkit.

DAY 1 PROGRAMME
Module 1: 2Hours
CYBER SECURITY: EXPECTING THE UNEXPECTED
• What is Cyber Resilience? Cyber security and current attack trends and terminology
• Security & Risk Management
• Asset Security
Objectives
• Research and describe major cyber events and methods of attack that have severely impacted businesses
• Write an accurate, mainly descriptive report for a client, in relation to a cyber security breach, in a designated region
of the world, using the correct terminology
Learning Outcome
• Command a basic knowledge and understanding of key business cyber security threats and risks
• Understand the challenges posed by the methods of manmade cyber security threats, and how these challenges
must translate into necessary work-based, and business-community-based, counter-measures
Module 2: 2Hours
NETWORK ARCHITECTURE, COMMUNICATIONS AND PROTOCOLS
• Communication and Network Security
• Identity and Access Management
• Network Devices, Local Area Networks (LAN) and Wide Area Networks (WAN)
• Frameworks for understanding cyber-attack and defence strategies
Objectives
• Describe various defensive and offensive cyber security strategies and frameworks
• Research and describe the dilemmas found in organising and safeguarding access controls, whilst retaining an open
and functional business environment
Group Exercise - RISK ASSESSMENT: – Design and explain a risk assessment matrix for cyber security in your chosen
business organisation)
Learning Outcome
• Understand and communicate the threats and risks posed to LANs and WANs
• Be able to calculate, describe and prioritise risk treatments in the domain of cyber security for networks and Proxy
servers
Module 3: 3Hours
MOBILE DATA RISKS AND LONE TRAVELLERS
• Protecting Mobile Data: Network Security on devices: Android (OS), WiFi networks and security management
• Security Assessment and testing -Security Assessment and testing (CISSP Domain 6)
• Security Operations (CISSP Domain 7)
• Mobile Data: risk assessment, research and Open Source Intelligence (OSINT) and mitigation
Objectives
• Develop and demonstrate a familiarisation with Open Source Intelligence (OSINT)
• Understand and explain how ‘OSINT’ can be created, collated, refined and used
• Research and describe various legal frameworks to ensure ethical and compliant risk management research
Group Exercise - REPORT on mobile worker data risks for a Board of Directors including the recommendation of three
credible CoA – 750 words)
Learning Outcome
• Be able to calculate and prioritise risk treatments in mobile data domains including VPN, WiFi and Android technologies
• Identify and Research risks posed to lone workers, business travellers and groups
• Be able to explain and effectively communicate such risks within a business environment by way of formal report writing
and the creation of credible recommendations/ Courses of Action (CoA)

Module 4: 3Hours
INVESTIGATIONS AND INCIDENT RESPONSE
• Legal and Ethical Principles and Cyber Investigations
• Forensic Science and Digital Forensics
Objectives
• 1.1 Develop knowledge of key cyber security lapses and breaches in multinational environments, and understand how
these relate to counter-terrorism
• 1.2 Research and describe useful risk assessment processes for IT Systems and vulnerable Cyber Security domains
• 1.3 Understand how to prioritise cyber risks and explain the methodical treatment for such risks for an Executive Board
(of non-technical specialists)
• 1.4 Research, describe and explain the costings and ‘business case’ for investing in cyber security
(Group exercise - Produce an INCIDENT MANAGEMENT PLAN for a business enterprise – 750 words)
Learning Outcome
• Demonstrate a basic knowledge and understanding of laws, international standards and useful guidance for the
conduct of ethical investigations
• Understand and apply the correct legal, ethical and International Standards to practical cyber security controls,
whilst taking into account the functionality of the business
• Comprehend and describe how firms respond to major incidents related to cyber security attacks/breaches
Module 5: 2Hours
• Software Development Security (CISSP Domain 8)
• Incident Response and Crisis Management
FUTURE-PROOFING YOUR BUSINESS
• Internet of Things, Hybrid and Emerging Technologies
• Preparing for ISO 27001 and preparing for CISSP
• Insuring against cyber and/or data loss
Objectives
• Develop knowledge of key emerging cyber technologies and potential impacts on modern business environments
• Understand how to prioritise risks relating to cyber security processes and explain such risks to staff and senior business
leaders in order to achieve ‘buy in’
• Research, describe and explain the costings and ‘business case’ for investing in a lawful internal system of staff security
Learning Outcome
• Describe and explain the future cyber threat environment for companies in the short to medium term
• Understand how Standards from Industry and International organisations, can support cyber security and business resilience
Module 6: 2Hours
DAY 2 PROGRAMME
BUILD YOUR OWN BUSINESS CYBER SECURITY TOOLKIT
Objectives
• Bring together the knowledge in order to construct and apply a cyber defence plan (‘cyber security business toolkit’)
for a business/organisation
Learning Outcome
• Build a cyber defence plan (‘cyber security business toolkit’) for a business/organisation
Note: The program is delivered across 3 days. Depending on the type of the program (residential / non-residential), the participants are expected to put in additional effort to do the case study and to prepare the
presentation While one desktop / laptop for each participant is ideal, if there is a lack of infrastructure, participants may be grouped in two or three persons per group.
Trainer’s Biography
Richard Bingley serves as Chairman of UK Security Partners Ltd., and has worked at Buckinghamshire New
University since 2012 as a Senior Lecturer in Security as well as Director of the Business School. Richard
served as Press Liaison officer, in the UK Labour Party Government during Prime Minister Tony Blair’s
second and third administration (2003-06). He is the author of three security books, including Terrorism:
Just the Facts (Heinemann, 2004) and the Security Consultant’s Handbook (IT Governance Press, 2015).
More recently, he has worked as a UK Home Office Security Industry Authority (SIA) licenced Close
Protection security officer for US and UK-based Olympics organisers and sponsor companies, including
the London 2012 Olympics and Russia’s 2014 Winter Olympics.
Richard has lectured regularly at UK security agencies including the National Counter-Terrorism Security
Office (NACTSO), the UK Defence Academy and theUK Foreign Office. He was Secretary to the Police
Business Advisory Group, the preeminent Metropolitan Police and City of London business policing
body during 2007 to 2009. He served as Chief Executive Officer of City Security and Resilience Networks
(CSARN) from 2009 to 2012 and Executive Director of London First (2007-09). In this post he led on the
development of a counter-terrorism focussed Business Policing Model in central London, in partnership
with the Commissioner of the City of London Police and Cardiff University.

Approved Training Provider
NO: 989498 T
REGISTRATION FORM
Cyber Security Management & Operations
3 & 4 July 2017
Venue
Le Meridian Hotel
Kota Kinabalu
Please register the following people from my organization
1. Name: Dept:
NRIC:
HP No:
2. Name: Dept:
NRIC:
HP No:
3. Name: Dept:
NRIC:
HP No:
Contact Person
Name:
Position:
Dept:
Organisation:
Address:
Tel:
Email:
Fax:
Website:
HRDF CONTRIBUTOR: YES NO
If YES (Please provide contact details of Officer In-Charge
for HRDF claimable).
Name:
Position:
Tel:
Fax:
Email:
REGISTRATION FEE
• RM 3,000/= nett per person include GST. Payment in
advance.
• Early bird rate is RM2,850.00 who register before or on
15 June 2017.
PAYMENT
All payment should be made payable to
SUNRISE TRAINING CONSULTANCY SDN BHD.
CIMB BANK A/C No 8007940547
Registration made by fax must be followed up immediately by payment
or kindly advise us if you would like us to claim via SBL-KHAS SCHEME
CONFIRMATION
Signature & Company Stamp
You will receive e-mail order confirmation one week prior to the
workshop.
CANCELLATION
Cancellations received less than 10 business days prior to the start of
the seminar is subject to a RM600.00 service charge. You may send a
substitute. Participants who do not attend a scheduled session without
notifying us less than 3 day before the seminar will be charged the entire
seminar fee.
CHANGES
The organisers reserve the right to cancel or change the date of Workshop
due to unforeseen circumstances. Every effort will be made to inform the
registered participants of the change.
Please contact for registration or for further information the following officers:
Ms Prisca Totu 019-8070070 | Mr. S. Chandra 012-2926563