Information is a key resource for all enterprises and technology plays a significant role. Today, Information Technology (IT) is increasingly advanced and pervasive. Attacks upon IT are also increasing. Destructive attacks against financial, retail, and energy providers indicate a need for renewed dedication to management of IT-related risk at an acceptable level for each organization. To that end, U.S. President Obama issued Executive Order 13636, “Improving Critical Infrastructure Cybersecurity,” on February 12, 2013. The Executive Order called for development of a voluntary risk-based cybersecurity Framework that is “prioritized, flexible, repeatable, performance-based, and cost-effective”; it was developed by the National Institute of Standards and Technology (NIST) in partnership with an international community of small and large organizations, including owners and operators of the nation’s critical infrastructure.

The training and examination will explain how these measures can be implemented, using COBIT 5.