top of page
Website Banner (1).png

Objectives and Scope of the Course

> To provide an overall comprehension of the risks and challenges on organizations resulting from an increasingly digital economy concerning cybersecurity leveraged in terms of speed and deepness by the COVID-19 pandemic.

> To provide insights from leading experts of the industry and reference academics concerning the implications of cybersecurity risks in terms of the organizations' Business, Governance and Compliance.

 

> This program aims to be the best international cybersecurity short/medium term course for executives and decision makers in Europe.

Brochura Detalhada

Brochura Resumida

Target Audience

> Members of the Management Board of companies/organizations from the private and public sectors

> Members of the Supervisory Board of companies/organizations from the private and public sectors

> Members of the Management Board and the Supervisory Board of Banks, Fintechs, and Insurance companies

> Directors and Decision makers of organizations on the areas/committees of Internal Control and Risk, Internal Audit, Inspection, and Compliance and Legal

> Armed forces decision makers

> Law enforcement decision makers

> Charted Accountants/Statutory Auditors (Revisores Oficiais de Contas)

> Lawyers on decision making positions

 Classes Format

> The course will be held in hybrid format (the first class and the last 2 classes will be in person @ Faculdade de Ciências da Universidade de Lisboa + the remaining classes will be held online)

> Starting date: April 18th, 2023

> 30 hours (12 modules)

> Tuesdays and Thursdays, from 16:30 to 17:50 and 18:00 to 19:20

 

> Certificate to be issued by the Faculty of Sciences of University of Lisbon after the completion of the course

Program

The program is divided in 12 different modules. The topics are:

  • MODULE 1: Macro perspective on cybersecurity (3 hours)

  • MODULE 2: Introduction to cyber security concepts (3 hours)

  • MODULE 3: Protection of assets and detection of attacks (3 hours) 

  • MODULE 4: Operational Technology Security (OT) (1.5 hours + 1.5 hours)

  • MODULE 5: Funding Programmes for the Cybersecurity Economy (1.5 hours)

  • MODULE 6: Identification of assets and risk concepts (1.5 hours)

  • MODULE 7: Reaction and Recovery (3 hours)

  • MODULE 8: Cybersecurity Law (1.5 hours)

  • MODULE 9: Cybercrime (1.5 hours)

  • MODULE 10a: Economic Evaluation of Cybersecurity Investments (1.5 hours)

  • MODULE 10b: Cybersecurity risks and challenges on Banking and Fintech sectors (1.5 hours)

  • MODULE 11: Asymmetric Threats - Cyber Threats (3 hours)

  • MODULE 12: Case studies and Tabletop exercise (3 hours)

Note: The tabletop exercise is a meeting to discuss a simulated emergency. Participants review and discuss the actions they would take in a specific emergency, testing their emergency plan in an informal, low-stress environment. Tabletop exercise is intended to clarify roles and responsibilities and to identify additional mitigation and preparedness needs. The exercise should result in action plans for continued improvement of the emergency plan.

Pricing

The standard price for the Cybersecurity Executive Program is 1.475€ + 23% VAT (if applicable).

Here are some of the discount options (non-cumulative) that we have:

  • Early bird: 15% for participants that register until February 15th, 2023

  • Early bird: 10% for participants that register between February 16th, 2023 and March 15th, 2023

  • 20% for INNCYBER INNOVATION HUB partner companies/organizations

  • 15% for individual participants for universities and research centers

  • 15% for companies that participate in the program with 2 or more members

Module 1 - April 13th

Macro perspective on cybersecurity (3h)

antonio gameiro marques.jfif

Contra-Almirante António Gameiro Marques

General Director

Gabinete Nacional de Segurança (GNS)

  • The strategic perspective of Cybersecurity at national level - Resilience, sovereignty, and Leadership

  • What the C level needs to ask to assess the organization’s cybersecurity level

  • Major challenges for organizations and citizens

  • New technologies leveraged by the pandemic

  • The need for a common knowledge concerning cybersecurity

  • EU Cybersecurity Strategy and its relationship with the National Cyberspace Security Strategy

  • EU Cybersecurity Certification. What is due to occur in Portugal and the impact in the economy

  • Cybersecurity incidents in Portugal – The National Cybersecurity Observatory

  • Operational Capability to prevent, deter and respond

  • New strategic initiatives

  • Self-evaluation Quiz

Module 2 - April 18th

Introduction to cyber security concepts (3h)

jose alegria.jpg

Eng. José Alegria

CISO, Head of CyberSecurity & Privacy (DCY)

ALTICE Portugal

  • Cyber Security definition

  • Importance of security at different layers (from physical to information)

  • Fundamental information security properties: confidentiality, integrity, availability

  • Types of vulnerabilities

  • Types of attacks

  • Motivations of attackers

  • Phases of an attack

  • Attack-Vulnerability-Intrusion (AVI) model

  • NIST Cybersecurity Framework: Identify, Protect, Detect, Respond, Recover

  • Self-evaluation Quiz

Module 3 - April 20th

Operational Technology Security (OT) (3h)

Eng. Javier Jarauta Sanchéz

Head of Cybersecurity Strategic Demand Generation

SIA/Minsait

Javier Jarauta Sanchéz.jpg

  • Cybersecurity OT Overview - Industry 4.0

  • OT & IIoT Technology Architecture:

    • Industrial Supervisory Control and Data Acquisition (SCADA)

    • Distributed Control Systems (DCS)

    • Industrial Control Systems (ICS)

    • Industrial Internet of Things (IIoT)

    • Cyber-Physical System (CPS)

  • Differences between IT and OT

    • Industrial Cyber Kill Chain

    • MITRE ATT&CK

  • Cybersecurity Architecture in Industrial Systems

    • Defense in Depth concept and Purdue Model

    • Industrial security standards ISA 62443

  • Standards and good practices in Industrial systems

    • NIST CSF, NIST 800-82, IEC 62443

  • Critical Infrastructures an Essential Services (EU Regulations)

    • EU Critical Infrastructures regulations

    • EU NIS2 directive

  • IT-OT Convergence. Industrial SOCs

  • Protection of OT & Mitigation measures

    • Cyber OT Technology trends

    • OT Services and Procedures

  • Self-evaluation Quiz

Module 4 - May 4th

Protection of assets and detection of attacks (3h)

Paulo Moniz.jfif

Eng. Paulo Moniz

Information Security and IT Risk Director

EDP - Energias de Portugal

  • Access control (Authentication, Authorization, Accounting)

  • Network protection (SSL/TLS, VPNs)

  • Infrastructure protection (Firewalls, IPS, Antivirus)

  • Information protection (backups, DLP tools)

  • Penetration testing

  • Personnel training

  • Intelligence gathering systems/OSINT

  • Vulnerability scanners

  • Event gathering and monitoring systems (Syslog, NIDS, HIDS)

  • Event correlation (SIEMs)

  • Self-evaluation Quiz

Module 5 - May 9th

Funding Programmes for the Cybersecurity Economy (1.5h)

marco lourenço.jpg

Dr. Marco Barros Lourenço

Research and Innovation Lead

European Union Agency for Cybersecurity (ENISA)

  • The European Strategy for the Digital de Decade

  • Cybersecurity Policy Context in Europe

  • The EU Cybersecurity Market – The road to a Strategic Autonomy

  • The Digital and Horizon Europe Programmes and the European Cybersecurity Competence Centre

  • European Funding for Cybersecurity - A practical approach

  • Self-evaluation Quiz

Module 6 - May 9th

Identification of assets
and risk concepts(1.5h)

Ana Respicio.jpg

Prof.ª Ana Respício

Assistant Professor of Informatics

Faculty of Science of the University of Lisbon

  • Information flows and dependencies

  • Risk identification

  • Risk assessment

  • Risk analysis

  • Risk management

  • Self-evaluation Quiz

Module 7 - May 11th

Reaction & Recovery
(3h)

Marcelo Rodrigues.jfif
luisfernandes.jpg

Eng. Marcelo Rodrigues

Director of Cybersecurity & Privacy

PwC Portugal

Eng. Luís Carlos Fernandes

Risk Assurance Senior Manager

PwC Portugal

  • Response plans (legal frameworks)

  • Incident management (CERT/CSIRT teams)

  • Analysis of incident impacts

  • Contingency plans

  • Disaster recovery

  • Business continuity

  • Image recovery and communication

  • Self-evaluation Quiz

Module 8 - May 16th

Cybersecurity Law
(1.5h)

Magda Coco

Dra. Magda Cocco

Head of Practice of Information, Communication & Technology

VdA - Vieira de Almeida

  • The importance of the legal dimension

  • Cybersecurity legal and regulatory framework – main trends 

  • The legal impacts of a cyber incident   

  • A strategic approach to cybersecurity regulatory framework (general and sector-specific legislation) 

  • Self-evaluation Quiz

Module 9 - May 16th

Cybercrime
(1.5h)

Foto_Rogerio_Bravo_PJ.jpg

Dr. Rogério Bravo

Chief Inspector of UNC3T - National Unit for Combating Cybercrime and Technological Crime of Portuguese Judiciary Police

  • Modus Operandi and terminology of the main cybercrimes

  • Incident and Crime: practical aspects of legislation

  • From the preparation to the mitigation of cyber-incident: the legal action

  • Self-evaluation Quiz

Module 10 - May 18th

a. Economic Evaluation of Cybersecurity Investments (1,5h)

AF_Fotos_EquipaProjeto-1.png

Prof. Telmo Vieira

Managing Partner

PremiValor Consulting

Certified Public Accountant - ROC

  • Cybersecurity Due Diligence in Mergers & Acquisitions (M&A) processes

  • The economic evaluation of Cybersecurity Investments:

    •  The financial model

    • Key assumptions

    • Key Economic and financial indicators (KPIs):

      • ​ALE – Annual Loss Expectancy

      • ROSI – Return on Security Investment

  • Self-evaluation Quiz

Module 10 - May 18th

b. Cybersecurity risks and challenges on Banking and Fintech sector (1,5h)

Pedro Martins da Silva.jpg

Eng. Pedro Martins da Silva

Head of Unit - Cybersecurity

Banco de Portugal

  • Major trends and Cybersecurity concerns in the financial sector

  • Cooperation, Proactivity and Systemic Approaches to Cyber Threats

  • Cybersecurity Governance: Engaging the Executive Boards

  • Narrowing the Cyber Language GAP between Operational/ Tactical and Executive Boards

  • Self-evaluation Quiz

Module 11 - May 23rd

Asymmetric Threats - Cyber Threats (3h)

Major José Ferreira

Cyber Defense Head

Portuguese Air Force

  • Cyber war

  • Asymmetric conflicts, threats, cyber attacks

  • Cyber attacks - examples:

    • Syrian Electronic Army​

      • DDOS​

    • Stuxnet

    • Estonia

    • Ukrainian elections

  • Cost vs impact

  • Who is the enemy

  • Who is the target

  • Vectors

  • What to do

  • Attack strength

  • Case study

  • Self-evaluation quiz

major josé ferreira.jpg

Module 7

Module 12 - May 25th

Case studies and Tabletop exercise (3h)

antonio gameiro marques.jfif

Contra-Almirante António Gameiro Marques

General Director

Gabinete Nacional de Segurança (GNS)

  • Target and MAERSK case studies – to be first discussed by students and then in class with the professor/lecturer as a way to cement the knowledge obtained throughout the course

  • Tabletop exercise to stimulate leaders in the decision associated with a crisis originating in cyberspace

  • Final remarks on the program

Program Coordination

Scientific Coordination

Casimiro.jpg

Prof. António Casimiro
Faculty of Science of the University of Lisbon

Executive Coordination

FOTO_TFV_Comunic_Social.jpg

Prof. Telmo Vieira
PremiValor Consulting

Program Calendar

Monday

Wednesday

Tuesday

Thursday

Friday

April 10th 2023

April 12th 2023

April 11th 2023

April 13th 2023

April 14th 2023

Module 1

Macro perspective on cybersecurity (3h)

CAlm. António Gameiro Marques

IN PERSON @ FACULDADE DE CIÊNCIAS DA UNIVERSIDADE DE LISBOA

April 17th 2023

April 19th 2023

April 18th 2023

April 20th 2023

April 21st 2023

Module 2

Introduction to cybersecurity concepts (3h)

Eng. José Alegria

Module 3

Operational Technology Security (3h)

Eng. Javier Jarauta Sanchéz

April 24th 2023

April 26th 2023

April 25th 2023

April 27th 2023

April 28th 2023

NATIONAL HOLIDAY

May 1st 2023

May 3rd 2023

May 2nd 2023

May 4th 2023

May 5th 2023

NATIONAL HOLIDAY

Module 4

Protection of assets and detection of attacks (3h)

Eng. Paulo Moniz

May 8th 2023

May 10th 2023

May 9th 2023

May 11th 2023

May 12th 2023

Module 5

Funding Programmes for the Cybersecurity Economy (1,5h)

Dr. Marco Barros Lourenço

Module 6

Identification of assets and risk concepts (1,5h)

Prof. Ana Respício

Module 7

Reaction and Recovery (3h)

Eng. Marcelo Rodrigues & Eng. Luís Carlos Fernandes

May 15th 2023

May 17th 2023

May 16th 2023

May 18th 2023

May 19th 2023

Module 8

Cybersecurity Law (1,5h)

Dr. Magda Cocco

Module 9

Cybercrime (1,5h)

Dr. Rogério Bravo

Module 10

a. Economic Evaluation of Cybersecurity Investments (1,5h)

Prof. Telmo Vieira

b. Cybersecurity risks and challenges on Banking and Fintech sector (1,5h)

Eng. Pedro Martins da Silva

May 22nd 2023

May 24th 2023

May 23rd 2023

May 25th 2023

May 26th 2023

Module 11

Asymmetric Threats - Cyber Threats (3h)

Dr. Magda Cocco

IN PERSON @ FACULDADE DE CIÊNCIAS DE UNIVERSIDADE DE LISBOA

Module 12

Case studies and Tabletop exercise (3h)

CAlm. António Gameiro Marques

IN PERSON @ FACULDADE DE CIÊNCIAS DE UNIVERSIDADE DE LISBOA

bottom of page