The AXIS Cyber Certificate consists of 10 sessions
Session 1
An interview of several cyber insurance leaders and their industry perspective, and an introduction and overview of general cybersecurity concepts to set the stage for later sessions.
Session 2
This session considers computer and network basics, cloud environments, and wireless technologies.
Session 3
An overview of threat actors, attack vectors and types, and tools used.
Session 4
Reviews some common risk management processes and controls like Inventory, Scanning and patching, MFA and remote access.
Session 5
Controls review - Endpoint security, an overview of encryption overview, email security (What do DKIM, DMARC and SPF actually do?)
Session 6
Controls review - Identity, access, and privileged access and protections, monitoring and management controls and concepts, end-of-life controls.
Session 7
Controls review continued - Incident response, security awareness training, Operational Technology, artificial intelligence, and an overview of application: security processes.
Session 8
Review of controls continued - Governance, 3rd-party security, and a view from the CISO’s office (interview with a CISO).
Session 9
Controls - Business Resiliency including back-up strategy and a discussion with an Incident Response leader and AXIS Incident Commander.
Session 10
Understanding the importance of modeling in the insurance industry and how it’s used, an overview of blockchain, Quantum computing, and graphene.
