20 March 09:45-12:00

Introductory Training in Systematic Cybersecurity Management

Systematic, business-integrated cybersecurity management is a digital training programme that provides organisations with concrete support in building and strengthening a structured approach to cybersecurity.

Through two interactive modules, participants receive methodological guidance, advisory support, and practical tools to integrate recurring security activities into business and development processes.

The programme is primarily aimed at SMEs developing digital products and services, but is also relevant for industry, automation, and critical infrastructure. The focus is on risk management, regulatory frameworks such as NIS2 and the Cyber Resilience Act (CRA), and on increasing the organisation’s cybersecurity maturity and resilience.

The training focuses on establishing a baseline of recurring security activities within the organisation — a yearly cycle consisting of a limited number of interconnected work processes designed to engage the organisation broadly. The aim is to simplify the implementation of continuous risk, continuity, and incident management, helping the organisation identify risks and meet both compliance and market requirements. Not least, this approach supports the identification and protection of the organisation’s critical assets.

Module 1: The Management System and the Baseline of Activities – What Value Do They Add?

  • Identification of the information and infrastructure within the organisation that constitute its critical assets

  • Overview of cybersecurity and general risk-management requirements applicable to the organisation and its customers

  • Overview of both general and organisation-specific threat landscapes affecting the organisation and its customers

  • Overview of how different types of disruptions may impact operations and how they can be managed if they occur

  • Identification of security objectives, including delegation of responsibilities and follow-up

Module 2: A Yearly Cycle of Cybersecurity Management – What Should Be Achieved Jointly and Within Each Area of Responsibility?

The main requirement tracks in the new regulatory frameworks, including:

  • Management engagement

  • Risk analysis based on the organisation’s importance to society

  • Threats specific to critical operations

  • Responsibility across the entire supply chain

This course description refers to Module 1, which constitutes the first part of the programme. To gain full value from the training, participants are expected to also complete Module 2, which is presented after the completion of Module 1.

Speaker

Johanna Cederström

The trainings are delivered by Johanna Cederström, a senior consultant in cybersecurity and risk management, with extensive experience in supporting organizations in establishing practical, business-oriented approaches to security and regulatory compliance.

Read more

When: 20 March, 09:45–12:00

What: Introductory Training in Systematic Cybersecurity Management

How: Webinar via link sent out a few days before

Language: English

Questions ? johanna.cederstrom@ideonsciencepark.se


Organized by