Course Outline
Foundations of Information Security in Public Institutions
- Core security principles and their importance in government organizations.
- Ensuring confidentiality, integrity, and availability in daily operations.
- Common threats targeting public sector information and digital services.
Governance, Policies, and Responsibilities
- Safety governance within an institutional context.
- Defining the roles of managers, users, IT teams, service owners, and suppliers.
- Establishing policies, standards, procedures, and accountability mechanisms.
Risk Management for Information and Services
- Identifying assets, threats, vulnerabilities, and business impacts.
- Conducting basic risk assessments and prioritizing risks.
- Selecting appropriate treatments and controls.
Information Classification and Data Protection
- Classifying institutional information based on sensitivity and usage.
- Safeguarding documents, records, databases, and shared files.
- Best practices for storage, transfer, retention, and disposal.
Identity and Access Management
- Fundamentals of user accounts, authentication, and authorization.
- Implementing least privilege, separation of duties, and access reviews.
- Managing access requests, changes, and revocation.
Secure Use of Systems and Digital Services
- Secure usage of email, web systems, remote access, and shared platforms.
- Avoiding common user errors.
- Practical measures for safer daily operations.
IT Service Management Basics and Security Integration
- The relationship between IT services and information security.
- Security considerations in service design, delivery, and support.
- Handling service requests, incidents, changes, and basic service documentation.
Incident Handling and Service Continuity
- Recognizing security incidents and service disruptions.
- Steps for reporting, escalation, containment, communication, and recovery.
- Ensuring backups, recovery planning, and availability during disruptions.
Security Awareness, Compliance, and Improvement
- Identifying phishing, social engineering, and unsafe behavior.
- Aligning with institutional policies, audit requirements, and regulatory expectations.
- Monitoring controls and identifying practical improvement actions.
Practical Workshop and Action Planning
- Reviewing a public sector security and service management scenario.
- Identifying risks and proposing improvements for services and security.
- Developing an action plan for participants' own areas of responsibility.
Requirements
- A foundational understanding of IT concepts, office systems, and the handling of institutional information.
- Practical experience using information systems, email, shared file repositories, and online services in daily workflows.
- No prior programming experience is necessary.
Audience
- Public sector employees engaged in the use, management, or oversight of digital information and services.
- IT personnel, including system administrators and service management staff within government institutions.
- Managers, coordinators, auditors, and compliance officers tasked with ensuring digital security and service quality.
Custom Corporate Training
Training solutions designed exclusively for businesses.
- Customized Content: We adapt the syllabus and practical exercises to the real goals and needs of your project.
- Flexible Schedule: Dates and times adapted to your team's agenda.
- Format: Online (live), In-company (at your offices), or Hybrid.
Price per private group, online live training, starting from 3200 € + VAT*
Contact us for an exact quote and to hear our latest promotions
Testimonials (3)
The trainer was helpful..
Attila - Lifial
Course - Compliance and the Management of Compliance Risk
The report and rules setup.
Jack - CFNOC- DND
Course - Micro Focus ArcSight ESM Advanced
The way to receive the information from the trainer