- Cybersecurity Awareness Training for Administrators and Executives (Group III) in accordance with Section 11.2.8 of Commission Implementing Regulation (EU) 2015/1998
This online course provides advanced knowledge and skills in information security for administrators of critical information and communication systems (CICS) in aviation security. The training is aligned with the requirements of Implementing Regulation (EU) 2015/1998 and the principles of the German Federal Ministry of the Interior and Community (BMI).
Contents:
- Cybersecurity Awareness: Raising awareness of cyber risks and threats, secure handling of data and systems, detection of phishing and social engineering attacks.
- Application Training for Specialized Systems: Secure use of aviation security-related applications and software, data protection and data security in the application context.
- Data Security: Confidentiality, integrity, and availability of data, protection against data loss and theft, secure data transmission and storage.
- Incident Handling: Detection and reporting of security incidents, response to cyberattacks, escalation paths and processes.
- Malware: Understanding different types and their impact, identification of methods by which malware infiltrates systems.
- Security Configuration: Importance of security configurations, introduction to BSI-compliant configuration requirements, best practices to reduce risks through secure configuration.
- Advanced Cybersecurity Awareness: Awareness of advanced threats and attack strategies, understanding best practices and behaviors for advanced IT security, measures for risk prevention and mitigation in the digital space.
- Business Risk: Introduction to the importance of business risk in the IT context, identification and assessment of business-relevant risks, risk mitigation measures and ensuring business continuity.
- Hacking: Understanding various hacking methods and techniques, awareness of the risks and consequences of hacking, preventive measures to protect against hacking attacks.
- Digital Forensics: Preservation and analysis of digital evidence, securing evidence in the event of cyberattacks.
- Penetration Testing: Planning and conducting penetration tests, analysis of security vulnerabilities, preparation of security reports.
Target Group:
- IT administrators and security officers responsible for the administration and security of CICS in aviation security
- Individuals with administrative rights
- Executives and senior management
Learning Objectives:
- Participants are familiar with the fundamentals of information security and relevant laws and regulations.
- Participants can identify and assess cyber risks and threats.
- Participants are able to take measures to protect CICS, securely use aviation security-related applications, and configure systems securely.
- Participants know how to respond to and manage cyberattacks.
- Participants understand technical, organizational, and personnel security measures.
- Participants are familiar with advanced security concepts such as penetration testing and digital forensics.
Certification:
Upon successful completion of the course, participants will receive a certificate of attendance.
Additional Information:
- The learning content is reinforced through interactive exercises and case studies.
- The course can be completed anytime and from any location.
Note:
This Cybersecurity Awareness Training fulfills the requirements of EU Regulation 2015/1998 for the training of administrators of CICS in aviation security.
