This module introduces the basic principles, standards, legislation, policies, rationale and requirements of an Information Security Management System based on the ISO/IEC 27000x standards. Since risk management is part of the requirements of an ISMS, this module also aims to provide the basic principles, phases and methodologies for implementing it. Mitigation Actions (technical and non-technical) and procedures will be introduced, assessed and evaluated, as well as development of security reports.
- Teacher: Nuno Pedrosa
This module introduces the basic principles, standards, legislation, policies, rationale and requirements of an Information Security Management System based on the ISO/IEC 27000x standards. Since risk management is part of the requirements of an ISMS, this module also aims to provide the basic principles, phases and methodologies for implementing it. Mitigation Actions (technical and non-technical) and procedures will be introduced, assessed and evaluated, as well as development of security reports.
- Teacher: Nuno Pedrosa
The module provides an understanding of the underlying properties and principles associated with cybersecurity risk management with particular focus on the energy sector. It offers the learners the opportunity to understand and adopt the relevant standard for risk management and governance to the energy domain.
This work has been funded by the European Union. Views and opinions expressed are however those of the authors only and do not necessarily reflect those of the European Union or Health and Digital Executive Agency (H A D E A).
- Teacher: Argyro Chatzopoulou