Every organization has critical information and technology assets that are essential to their business operations and require enhanced security. Organizational resources that can be dedicated to cybersecurity are finite; therefore, those resources should be applied deliberately and strategically focusing on the most important assets. This course will enable participants to identify their high value assets, prioritize them, assess them and create a remediation action plan.
The course is designed to align with the Federal HVA Program but provides a scalable and flexible approach that will assist any size SLTT organization to identify their critical assets based on their individual requirements.
At the end of this course, participants will be able to identify, prioritize and assess their high value assets resulting in a remediation action plan.
Objectives
- Identify key critical asset stakeholders in their organization and community
- Identify their mission essential functions (MEFs) and identify the assets needed to support those MEFs.
- Using a tool, participants will be able to prioritize critical assets also known as high value assets (HVAs) resulting in an HVA inventory.
- Using a tool, participants will be able to assess their HVAs against the NIST Cybersecurity Framework resulting in a remediation action plan.
Target Audience
Government, private sector and critical infrastructure decision makers, mid-level management, policymakers, administrators, information security and cybersecurity personnel. The course is also applicable for individuals in any size organization or agency who has an interest and/or influence to integrate High Value Assets (HVA) processes into their cybersecurity program.