Information Security & Cyber Risk Certificate

This course is available as an individual track or as part of the full CITP Learning Pathway

Defending against cybersecurity risks

You’ll gain a comprehensive understanding of strategies to assess cyber risk, detect threats, and plan for recovery in the event of a breach as you explore the following key concepts:

• Security policies
• Access controls
• Incident response plans
• The cybercrime economy

Custom professional development to suit your goals

This certificate program was developed to help you customize your professional development goals by:

• Acquiring new skills in key areas essential for today’s online landscape
• Earning CPE credits needed to maintain your existing CITP credential
• Preparing for the CITP credential exam

CITP credential exam preparation

The Information Security and Cyber Risks Certificate aligns with Module I of the CITP Credential Body of Knowledge. Since this module accounts for 20% of the CITP exam, this program can help you prepare.

Bonus optional application exercises help you apply the learning to real-world scenarios. Note that this bonus material is strictly for your enhancement and does not provide CPE credit.

For additional education specific to the CITP Credential Body of Knowledge, check out the following certificate programs:

• Data Management & Analytics Certificate
• IT Governance, Risk, & Controls Certificate

You can also build essential competency with the CITP Learning Pathway Bundle, which covers the comprehensive CITP Credential Body of Knowledge and includes a complimentary CITP credential exam!

Disclaimer: The courses in the CITP Learning Pathway Bundle cover the CITP Credential Body of Knowledge. This bundled learning includes education that has been extracted from existing AICPA learning products. As such, the module references in their titles are specific to the original learning product and does not reflect the order in this bunded learning product.

Who Will Benefit

• CITP credential candidates
• Existing CITP credential holders
• Accounting professionals
• Finance professionals
• Auditors

Key Topics

• Elements of security policy
• Logical and physical access controls
• Network and system security controls
• Business continuity planning and disaster recovery
• Cyberattacks, data breaches, and privacy
• Cybersecurity frameworks and regulations
• Cybersecurity risk management considerations and controls
• Components of a cybersecurity risk management program

Learning Outcomes

• Recognize and differentiate information security policies and strategies to guide the development of standards and procedures, in alignment with organizational goals and objectives
• Identify and differentiate among the four types of access control: identification, authentication, authorization, and accountability.
• Determine the proper steps to implement comprehensive business continuity, disaster recovery, and incident response plans.
• Determine the major threat vectors for systems, including cyber adversaries, the cybercrime economy, and various types of attacks.
• Understand data breach implications and privacy considerations.
• Compare and contrast controls to mitigate cybersecurity risks.
• Analyze the components of an organization's cybersecurity risk management program.
• Apply the SOC for Cybersecurity report, including report content, target users, and use of the report in conjunction with an entity’s overall cybersecurity risk mitigation strategy.