This program is taught in English
About the program
In today’s fast evolving society, companies and institutions have become highly dependent on information-processing systems and, by extension, on waterproof security systems. As a result, the role of a security officer (CISO, DPO, …) has changed significantly over the past few years. To meet present-day stringent cybersecurity requirements, the security officer must be well aware of the organization’s mission and vision, have insight into its security IT architecture and be capable of encouraging the conscious use of information within the organization.
The Master Class Information Security Management – a collaborative effort of Antwerp Management School and EuroCIO – offers the required up-to-date knowledge for information security professionals in order to excel in the governance and management of their IT security responsibilities. The program has a managerial focus.
- Learn how to develop and implement information security & risk management strategies and policies, tailored to the specific needs of your organization;
- Become the information security intermediary between board, management, scrum teams, business development, IT and operational units within your organization;
- The program is compliant with the EU e-Competence Framework (e-CF), the EU e-Leadership program and is endorsed by the European CIO Association (EuroCIO).
After attending this program, participants have further developed their professional skills:
- Information Security Management: develop, implement and manage information security & risk management strategies and policies tailored to the specific needs of the organization;
- Information Security Architecture: develop information security and risk management processes, embedding them in related corporate processes and associated technology and behavior in order to guarantee good corporate governance;
- Information Security Awareness: raise organization-wide cyber security awareness in terms of information vulnerabilities and decide on information security measures and metrics;
- Information Security Coordination: constructive collaboration between business requirements and technical information security experts in order to harmonize policies, operational activities and IT security aspects;
- Information Security Leadership: create a risk-aware culture with associated ownership for business as well as IT. Develop, explain, and execute the necessary improvements on people behavior, process and technology and adjust those taking into account all legal, business, society and human related aspects.
Module 1: Understanding the strategic context
This module discusses the broader organizational context of information security and provides a pragmatic approach to align the information security strategy to the organization’s strategic goals. Related governance, legal and compliancy aspects will be covered as well as the economics of information security.
- Information Security and Business & IT alignment, Critical Success Factors;
- Enterprise Risk Management – Risk Standards (ISO/ISF);
- Corporate Social Responsibility;
- Impact analysis;
- Economics of information security – The Security Balanced Scorecard.
Module 2: Translating the information security strategy into action
In this module participants will learn how to build and to execute a short, mid and long-term information security program. Participants will learn how to develop a professional information security management system for their organization. The curriculum includes identifying all the relevant information risks, achieving management approval to launch the security initiative and monitoring the results through a project based approach.
- How to determine your organization’s biggest threats and risk;
- How to develop and promote Security Awareness within your organization;
- Information Security Governance: organization, management, responsibilities, reporting;
- Program Development and Management;
- Incident Management and Response.
Module 3: Understanding and maintaining operational aspects of information security management
This module addresses all operational matters related to information security management, including questions such as how to keep information security on the executive agenda and how to measure, to control and to report information security within the predefined requirements and agreements. In addition, this module explores new security management challenges caused by new technological developments (e.g. automation, CI/CD, blockchain) and legal regulations (e.g. GDPR).
- Cybersecurity and Infrastructure;
- IT-security frameworks;
- NIST IT-security;
- Technical Risk Assessment;
- IT-continuity management;
- Disaster recovery;
- How to organize yourself during a breach: Crisis Game.
This master class is designed for business and IT professionals who operate at management level or have management level aspirations.
Positions held by participants include those of IT consultant, IT auditor, business analyst, service delivery manager, IT manager, (chief) information security officer (CISO), data protection officer (DPO), security manager, governance, risk and compliance (GRC) officer, etc.
Participants are active in various types of organizations such as consulting and auditing firms, IT service providers, manufacturing, healthcare and governmental organizations.
Based on active participation in this course and after successful completion of the module assignment you will receive a Master Class Certificate delivered by Antwerp Management School and EuroCIO.
In addition you will receive an exemption for this module if you would decide to register for one of the Antwerp Management School Executive Master tracks in Leading Digital Transformation.
Get a master’s degree!
The Master Class Information Security Management is an integral part of our Executive Master tracks in Digital Business & IT. Three part-time master programs allow you to combine your job and career perspectives with the commitment and aspiration of obtaining a master’s degree.
- Executive Master in IT Management (MITM)
- Executive Master in Enterprise IT Architecture (MEITA)
- Executive Master in IT Governance and Assurance (MITGA)
Thanks to the modular construction of these master tracks, we are offering maximum flexibility with multiple starting points spread over two academic years. Start with a module and apply for the full master track later or combine only those modules that are the best fit to your personal needs.
Successful completion of the part-time master program will result in a Master of Science (MSc) diploma with double accreditation: the international AACSB accreditation as well as the Benelux NVAO accreditation.