17-18 March 2016

Early registration1 March 2016

Final registration10 March 2016

CSX Fundamentals Workshop

Offered by In association with

ISACA Athens Chapter has been awarded four times as Best

Large Chapter in Europe/Africa (2009, 2012, 2013, 2014)

2016

ISACA Athens Chapter – CSX Fundamentals Workshops2

Contents

1. Introduction 12. Scope 13. Who should attend? 14. Why attend 25. Where? When? Who will be the Trainer? 26. What will you learn? 27. Course Summary 38. Registration Process 49. Frequently Asked Questions 510. Travelling Information 6

1. Introduction

Cybersecurity is a growing and rapidly changing field, and it is crucial that the central concepts that frame and define this increasingly pervasive field are understood by professionals who are involved and concerned with the security implications of Information Technologies (IT).

Cybersecurity Nexus (CSX) is a new platform for security knowledge and a professional development and certifica-tion program in cybersecurity. Launched by ISACA, CSX provides IT security and cybersecurity professionals with the knowledge and technical skills to defend their organization from security breaches and cyber-attacks.

A key part of Cybersecurity Nexus is its training workshops and innovative certification tracks. ISACA International notes that while other cyber security certifications assess knowledge in a question-and-answer format, “CSX training and exams are conducted in a live, virtual ‘cyber lab’ environment and test on whether an individual has the skills and technical savvy to do the job.”

The Certification Tracks

CSX certifications are designed to test a candidate’s ability to perform tasks of various degrees of complexity within 5 cybersecurity areas: identify – protect – detect – respond – recover.

This new cybersecurity path begins with the CSX Fundamentals Certificate, which offers a knowledge-based cre-dential on the introductory concepts that frame and define the standards, guidelines and practices of the industry. It also provides insight into the importance of cybersecurity and the integral role of cybersecurity professionals.

The next 4 levels of CSX Certifications are based on the knowledge and concepts covered in the CSX Fundamentals Certificate but test competencies in scenarios that become more complex and sophisticated the higher the level.

The CSX Fundamentals workshop is offered for the second time in Greece, after the quick sold out of the first course which was held, last November. The course is offered exclusively in Greece by ISACA Athens Chapter with the support of the Hellenic American Union.

2. Scope of the course

This workshop is geared toward IT security professionals new to cyber security, recent graduates in IT-relevant fields, and IT professionals looking for a career change to cybersecurity. It prepares you for the CSX Fundamentals Exam covering the foundational areas of cyber security:• Cybersecurity objectives and roles • The difference between cybersecurity and information security • The Principles of Cybersecurity • Information Security within Lifecycle management • Risks and Vulnerabilities • Incident Response

ISACA Athens Chapter – CSX Fundamentals Workshops 3

3. Who should attend?

IT security professionals new to cybersecurity, IT oriented graduates and those IT professionals looking for a career change to cybersecurity.

4. Why attend?

By the end of the course you will:• Understand basic cybersecurity concepts and definitions• Define network security architecture concepts• Recognize malware analysis concepts and methodology• Identify computer network defense (CND) and vulnerability assessment tools, including open source tools and

their capabilities• Explain network systems management principles, models, methods, and tools• Distinguish system and application security threats and vulnerabilities• Classify types of incidents (categories, responses, and timelines for responses)• Outline disaster recovery and business continuity planning• Comprehend incident response and handling methodologies• Understand security event correlation tools, and how different file types can be used for a typical behavior• Be aware of the basic concepts, practices, tools, tactics, techniques, and procedures for processing digital

forensic data• Recognize new and emerging information technology and information security technologies

5. Where? When? Who will be the Trainer?

The course will be held at the Hellenic American Union Conference Center, Massalias 22, 10680 Athens, on 17-18 March 2016 (Thursday, Friday), from 9.00 to 17.00

Course leader: Dr. Konstantinos Papapanagiotou, CISSP, ITIL, Information Security Sales Manager, OTE, OWASP Chapter Leader. Dr. Konstantinos Papapanagiotou is the Information Security Services Sales Manager at OTE. In the past he has led teams of consultants, helping large organizations in Greece, Cyprus, Balkans and the Middle East improve their security posture. He has more than 12 years of experience in the field of information security both as a corporate consultant and as a researcher. Konstantinos holds a BSc and PhD in Information Security from the University of Athens and an MSc in Information Security with distinction from Royal Holloway. He is also leading the OWASP Greek Chapter and is an ISACA CyberSecurity Nexus Liaison for Greece.

ISACA Athens Chapter – CSX Fundamentals Workshops4

Cybersecurity introduction and overview• Cybersecurity architecture principles• Cybersecurity definition• Objectives of cybersecurity• Key business and technology factors• Cybersecurity roles and governance• Domains of cybersecurity

Cybersecurity concepts• Risk management terms, concepts and frameworks• Common attack types and vectors• General process and attributes of cyber attacks• Malware• Framework and guidance for policies and procedures• Cybersecurity control processes

Security architecture• Perimeter security concepts• Security architectures and frameworks• The OSI model and TCP/IP communication protocol• Defense in depth• Firewall concepts and implementations• Isolation and segmentation• Intrusion detection and prevention systems• Antivirus and anti-malware• Encryption fundamentals, techniques and applications

Security of networks, systems, applications and data• Risk analysis, risk assessments and risk mitigation

strategies• Scanning, assessment and management of

vulnerabilities• Penetration testing• Network management and configuration• Port numbers and protocols• Risk and controls for remote and wireless access• System hardening and virtualization• Specialized systems• Command line knowledge and tools• System development life cycle (SDLC)• OWASP top ten application security risk• Data classification process and requirements

Incident response• Distinctions between events and incidents• Incident categories and types• Security event management• Key elements of incident response plans• Legal requirements of investigation and evidence

preservation• Requirements for forensic investigations• Business continuity planning and disaster recovery

The security implications of the adoption of emerging technologies• Trends in the current threat landscape• Characteristics and targets of advanced persistent

threats (APTs)• Mobile device vulnerabilities, threats and risk• BYOD and consumerization of IT and mobile devices• Risk and benefits of cloud and digital collaboration

6. What will you learn?

ISACA Athens Chapter – CSX Fundamentals Workshops 5

7. Course Summary

Prerequisites Fundamental concepts of IT Security, IT academic background

CPEs 16

Languages Greek

Planning 17-18 March 2016 (Thursday, Friday), 9.00-17.00

Cost EARLY BIRD (registration until 1/3/2016) for ISACA members only

€ 270 per participant

NORMAL RATE (registration after 1/3/2016)

€ 350 per participant for ISACA member

€ 450 per participant for non-ISACA member

(same fee applies for non-members’ registrations before 1/3/2016)

Unemployed ISACA members: € 200 per participant

Special price sponsored by ISACA Athens Chapter

Cost includes

• course material

Cost does not include

• exam fees

This program is subsidized by LAEK/OAED 0,24%

(for participants from Greek companies only)

Registration fees to be paid until 10 March 2016.

ISACA Athens Chapter – CSX Fundamentals Workshops6

8. Registration Process

Step 1 Fill in the registration form at the end of this document and send it to Hellenic American Union by

following the respective guidelines below the registration form.

Step 2 Hellenic American Union will send a registration confirmation receipt via e-mail.

Step 3 Send payment amount to Hellenic American Union by following the payment details on the

registration form at the end of this document.

For bank transfer information please contact the Hellenic American Union. We will send you bank transfer information once we receive your registration form. Please always quote the invoice number which you will receive once you have registered, or alternatively please quote your company’s name or the delegates name in the transfer instructions.

The amount to be credited should be net of commissions. Any commissions/fees for bank deposits

or transfers are payable by participants.

Step 4 You will receive a course registration invoice from Hellenic American Union after we receive your

payment.

Payments: All registrations & payments must be received by the Hellenic American Union the latest by Thursday

10 March 2016. Invoices are issued by the Hellenic American Union.

Cancellations/Substitutions must be made via e-mail and sent to training@hau.gr. A full refund can be given for

cancellation requests received in writing 10 working days before the course commencement. No refund will be

given for cancellation requests after this deadline. A replacement is always welcome at no extra cost!

ISACA Athens Chapter – CSX Fundamentals Workshops 7

9. Frequently Asked Questions

When is the CSX Fundamentals exam?

The Cybersecurity Fundamentals Certificate exam is available online, at your convenience. Simply schedule the date and time that works best for you and your exam will be remotely proctored.

Is there one combined registration process for the CSX exam and the ISACA Athens Chapter’s CSX Fundamentals Course?

No, there are two separate registration processes because the exam is administered by ISACA International.One registration combining both CSX exam fees and CSX Fundamentals course fees is not possible.

Is attending this ISACA CSX Fundamentals sufficient enough for me to pass this exam successfully

Yes

What is the date of the next CSX Fundamentals course?

ISACA Athens Chapter will only run 2 CSX Fundamental Courses each year. Next course dates will be announced after the successful completion of this course.

Are there any special fees for unemployed members of ISACA Athens Chapter for this course?

Yes, please refer to the registration form.

ISACA Athens Chapter – CSX Fundamentals Workshops8

10. Travel Information

Accommodation - Recommended hotel

For those travelling to Athens or from abroad and need accommodation, we recommend Titania hotel (www.titania.gr).

In order to take advantage of special rates, please contact Ms Vasiliki Zafiri (+30 210 3680927, vzafiri@hau.gr) at the

Hellenic American Union.

Transportation arrangements

We highly recommend using our excellent Athens public transportation (metro).

You need to validate your paper ticket at the beginning of your journey. Intergrated tickets (as well as Metro airport

tickets) are valid for 90 minutes so you don’t need to validate it again if you use another mode of transportation

anywhere in Athens within 90 minutes of the first validation. Ticket price is € 8 (one way) or € 14 (for 2 journeys –

return ticket). One way ticket for 2 persons is € 14 and for 3 persons is € 20.

Getting to/from the Athens International Airport and the city center, located about 36 km east can be achieved via

metro:

Take the Blue line (line 3 – direction “Anthoupoli”) of the metro from Athens International Airport and get off at

Syntagma station. Trains run every 30 minutes, 7 days a week from 6:30 a.m. to 11:30 p.m. The trip from/to the

Airport to Syntagma metro station (Athens center) lasts 40 minutes. See the Metro timetable to the airport here and

also an Athens airport railway station map. For ticket info see Athens Transport tickets and cards.

ISACA Athens Chapter – CSX Fundamentals Workshops 9

From Syntagma metro station you can:a. either change and take the Red line (line 2 – direction Anthoupoli) in order to get off at next stop, Panepistimio

metro station (exit National Library) and walk approximately 4-5 minutes towards Omonia square to Titania Hotel (it is just on your right hand side).

b. Walk from Syntagma Square to Titania Hotel through Panepistimiou street (it is approximately 10-15 minutes walk)

On last evening at the end of the Exam Preparation Course (at 17:00), you can take the metro from Syntagma directly to the airport.

Alternatives:a. By Bus (map: http://www.oasa.gr/pdf/en/maps/keypoint/kentro-athina-2008.pdf)

• From the Airport take Bus Line X95 ‘Syntagma – Athens Airport Express’ (Orange Line).• From Syntagma Square you can either take the Metro (see above) or walk to Titania Hotel.• You can also take a bus (most of them are passing by in front of the hotel, while• some stop right in front of the hotel).

b. By Taxi (Flat fare: 35 Euros)c. By Car (36 km, 35-40 minutes depending however on traffic)

• Via Attiki Odos, route 6/Ε94, 31,6 km, 35 min• Via Mesogeion Avenue, 20,8 km, 34 min• Via Route 64, 26 km, 34 min

Red route: from metro Syntagma Station (circled A) and Panepistimio Station (circle) to Hotel (B) and venue (C)Blue route: alternative route from Hotel (B) to venue (C)

Registration FormI wish to register for the CSX Fundamentals Workshop, 17-18 March 2016

Please send this registration form to Hellenic American Union fax nr. (30) 210-3633174, or at training@hau.gr.

Registration Fees Isaca Members Non Members

Early bird fee until 1 March 2016 € 270 q € 450 qNormal fee after 1 March 2016 € 350 q € 450 qUnemployed ISACA membersSpecial price sponsored by ISACA Athens Chapter

€ 200 q

q I wish to register the workshop for the 0,24 OAED-LAEK subsidy program

PERSONAL DETAILS (Please print clearly) (*mandatory fields for individual registrations only)

Family Name First Name

Company Position/Title

Home address* (individual/personal registrations only)

City* Postal Code*

Tel* Fax Ε-mail

Tax ID Nr./Tax Registration Office* (for individual registrations only)

INVOICE DETAILS (all fields are mandatory for company registrations)

COMPANY NAME Area of Business

Address City Postal Code

Tel Fax

Tax ID Nr. Tax Registration Office

I/We understand and accept the registration and cancellation policies and procedures, and the protection of personal and credit card data policy.

Signature/Company stamp Date

PAYMENT DETAILS

Payments are made to the Hellenic American Union immediately upon registration. Once the Hellenic American Union receives the registration form, we will send you confirmation e-mail and payment transfer information.

PAYMENT METHOD

q Please invoice my company

Bank Transfer** q VISA q MASTERCARD q

** For bank transfer information please contact the Hellenic American Union. We will send you bank transfer information once we receive your registration form. Please always quote the invoice number which you will receive once you have registered, or alternatively please quote your company’s name or the delegates name in the transfer instructions. An invoice will be sent upon receipt of payment.

CANCELLATION POLICYA full refund will be given for cancellations requests received in writing up to 10 working days prior the course starts. Cancellations received within less than 10 working days before the course will not be refunded. A replacement is always welcome.Disclaimer: ISACA Athens Chapter and Hellenic American Union reserve the right to change or cancel any part of the published program due to unforeseen circumstances. In case the event is cancelled, registration fees will be returned in full to the delegates.

In order to guarantee a place on the course and the exams, delegates are kindly requested to register until the 10th March 2016.

* A recognized Center for Lifelong Learning (ΚεΔιΒιΜ2) that has been granted a license of operation by the National Organization for the Certification of Qualifications and Vocational Guidance (EOPPEP)

In association with

*

The Hellenic American Union collects and uses personal information in order to communicate with the members of its public, to provide educational and cultural programs and services, and to improve the quality of services that it offers. The information we have requested in this form will be maintained in digital and/or physical form and used only for the purposes described above. You have the right to reasonable access to the personal information we have on you, to request a copy of this information, and to correct it if inaccurate. To find out more, contact the Hellenic American Union at privacy@hau.gr.

PERSONAL DETAILS (Please print clearly) (*mandatory fields for individual registrations only)

Family Name First Name

Company Position/Title

Home address* (individual/personal registrations only)

City* Postal Code*

Tel* Fax Ε-mail

Tax ID Nr./Tax Registration Office* (for individual registrations only)

INVOICE DETAILS (all fields are mandatory for company registrations)

COMPANY NAME Area of Business

Address City Postal Code

Tel Fax

Tax ID Nr. Tax Registration Office

I/We understand and accept the registration and cancellation policies and procedures, and the protection of personal and credit card data policy.

Signature/Company stamp Date

PAYMENT DETAILS

Payments are made to the Hellenic American Union immediately upon registration. Once the Hellenic American Union receives the registration form, we will send you confirmation e-mail and payment transfer information.

PAYMENT METHOD

q Please invoice my company

Bank Transfer** q VISA q MASTERCARD q

** For bank transfer information please contact the Hellenic American Union. We will send you bank transfer information once we receive your registration form. Please always quote the invoice number which you will receive once you have registered, or alternatively please quote your company’s name or the delegates name in the transfer instructions. An invoice will be sent upon receipt of payment.

CANCELLATION POLICYA full refund will be given for cancellations requests received in writing up to 10 working days prior the course starts. Cancellations received within less than 10 working days before the course will not be refunded. A replacement is always welcome.Disclaimer: ISACA Athens Chapter and Hellenic American Union reserve the right to change or cancel any part of the published program due to unforeseen circumstances. In case the event is cancelled, registration fees will be returned in full to the delegates.

Information

ISACA Athens Chapter

For membership please contact: membership@isaca.gr

For certifications please contact: certifications@isaca.gr

www.isaca.gr

LinkedIn Group: ISACA Athens Chapter

Twitter: isaca_gr

Facebook: ISACA Athens Chapter

For further information about the preparation course, please contact:

Ηellenic American Union

Tel: 210-3680927, 210-3680907 Fax: 210-3633174,

e-mail: training@hau.gr, www.hau.gr/management

or

ISACA Athens Chapter

e-mail: certifications@isaca.gr