Measuring Cyber Risk Utilizing Tiers

Field: Auditing | Delivery Method: Self Study | CPE Hours: 1.5

  Enroll in Course

Cyber risk is one of the top business risks today. Information technology continues to evolve ad cyber risk continues to escalate. It is important that all individuals understand the basics of cyber risk and threats. In addition, organizations must learn to develop effective cyber risk programs and appropriately measure cyber risk.

This course is complimentary to the courses on:
  • Cyber risk management frameworks
  • Cyber programs and roles
  • Cyber breaches and actions
As discussed in the segment on cyber risk management frameworks, multiple risk management frameworks exist and can be effectively utilized by organizations to establish their cyber programs. These learning segments utilize the NIST Framework (National Institute of Standards and Technology (NIST) established by executive order in February 2013) as a template for assisting in understanding the various components that should be assessed related to cyber risk. This course delves into the process of assessing risk management status utilizing the tier concept.

The NIST framework introduces the concept of tiers. Tiers are utilized to help an organization determine its current cyber risk management status. Tiers can also be used when determining the desired risk management status. The tier concept and its execution can be compared to the maturity model concept utilized in ERM. However, the tiers are NOT representative of maturity level. The manner or process utilized for the organization to determine its tier level can be similar to an ERM maturity assessment.

Regardless of the specific framework chosen to follow for a risk management program, the tier concept can be an effective addition to any cyber risk management program.

Lesson objectives:
  • Identify the NIST tiers.
  • Explore the meaning and impact of tier one.
  • Explore the meaning and impact of tier two.
  • Explore the meaning and impact of tier three.
  • Explore the meaning and impact of tier four.
  • Identify how to assess tiers.
  • Explore how to utilize tier measurement.
  • Explore how to properly inform and position your organization to properly manage cyber risk.

Field: Auditing
CPE: 1.5
Delivery Method: Self-Study
Format: Video




Your Instructor


Lynn Fountain
Lynn Fountain

Consultant, CPA, CGMA, CRMA, MBA, Past Chief Audit Executive

Business Consultant, Trainer, Author


Ms. Fountain has over 40 years of experience spanning public accounting, industry accounting and consulting. Sixteen years of that experience has been in the field of internal audit, risk managment and process improvement. She is well adept to assist your organization evaluate business strategy, perform risk assessments, establish a Sarbanes-Oxley process, synergizing internal audit processes or perform process improvement projects.


As a past corporate executive Lynn has a passion for working with professionals to enhance their processes and provide leading edge education. She has authored and delivered hundreds of training courses for accounting, finance and audit professionals. Her training is filled with not just theory but real world application.


Ms. Fountain has authored three technical publications:

-Leading the Internal Audit Function 

-Raise the Red Flag

-Ethics and the Internal Auditor's political dilemma


Lynn is a recognized leader in the internal audit profession as well as a recognized business professional.  


Ms. Fountain obtained her BSBA from Pittsburg State University and her MBA from Washburn University in Kansas. She has active, current CPA, CGMA, and CRMA credentials.


https://www.lynnfountain.net/


Course Curriculum


  Measuring Cyber Risk Utilizing Tiers
Available in days
days after you enroll

Frequently Asked Questions


When does the course start and finish?
The course starts now and never ends! It is a completely self-paced online course - you decide when you start and when you finish.
How long do I have access to the course?
How does lifetime access sound? After enrolling, you have unlimited access to this course for as long as you like - across any and all devices you own.
What if I am unhappy with the course?
We would never want you to be unhappy! If you are unsatisfied with your purchase, contact us in the first 7 days and we will give you a full refund.

Get started now!