Cyber Revision: free cybersecurity revision and hands-on practice

GRC

Security is, underneath everything, a risk decision: what to defend, against what, and to what level. This module covers the governance, risk and compliance layer that turns technical work into business decisions a board and a regulator can stand behind.

By the end you will be able to:

Assess risk both ways, qualitatively on a matrix and quantitatively with SLE, ARO and ALE, and pick the right treatment from mitigate, transfer, avoid or accept.
Set and tell apart the business continuity targets RTO and RPO, and explain what each one drives.
Place a security activity in the right NIST CSF 2.0 Function, including the new Govern Function, and match a need to ISO 27001, PCI DSS or Cyber Essentials.
Apply the Computer Misuse Act sections to a scenario and know why authorisation is the line between testing and crime.
Work the core UK GDPR duties: the principles, the roles, and the 72 hour breach notification to the ICO.

The exam is practical: ten self-contained artifacts to read and classify, graded in your browser. Get seven of ten and the certificate is yours.

Module objectives

GRC