ISC2 Pre-Conference Trainings 2024This year’s ISC2 Security Congress proudly boasts the theme “Boldly Forward” which transcends into the pre-conference training opportunities. The available sessions’ overarching topics include cybersecurity leadership, securing your organization and certification training. Participants can engage in once-a-year opportunities like hands-on threat modeling, a tabletop exercise development workshop and more. These cyber trainings will take place on-site at Caesars Palace Las Vegas the weekend before cybersecurity’s premier event, Saturday and Sunday, October 12-13.

Each workshop is expertly curated and led by a cybersecurity expert. Seasoned ISC2 educator Kevin Stoffel, CISSP will be facilitating Evaluating the Security Risks of Products and Services and recently discussed his 15 years of being an ISC2 instructor saying, “What I find as a highlight is the aha moments that I get from learners or students." We anticipate many an “aha” moment to come from this workshop where Kevin introduces an analytical technique to product managers, and other roles, to better determine security risks.

A standout opportunity for aspiring cyber leaders is the ISC2 Women Cyber Leaders Workshop in partnership with WiCyS. Speakers will include ISC2 CEO Clar Rosso and WiCyS Executive Director. Attendees will explore how to lead and influence from anywhere in your organization and participate in interactive discussions with women cyber leaders on career mapping, mentorship, allyship and taking your seat at the table.

The CISSP Essentials for Certification and Practice workshop will be facilitated by Alan Yue, CISSP who recently celebrated 20 years as a certified member. Alan is honored to serve ISC2 members, and future members, as a certified instructor for just over seven years. What drew him to become an educator was the recognition of a rising demand for cybersecurity professionals. “It was during this time (2017) that I began to transition more of my professional efforts towards preparing the workforce of today and tomorrow to address the threats to the societal opportunities that information and communications technology could realize,” he said.

This year’s pre-conference workshops are shaping up to be some of the most impactful cybersecurity educational trainings available. Each one has limited capacity, and we anticipate seats will fill quickly.

Cybersecurity Leadership

Elevating Cyber Leaders - Effective cyber leadership goes beyond technical expertise, requiring the ability to align cyber initiatives with broader organizational goals, engage with stakeholders across departments, and articulate cybersecurity risks and priorities to executive leadership and the board of directors. This workshop will empower learners with the knowledge, tools and strategies necessary to effectively lead teams, drive innovation and contribute to organizational success.

ISC2 Women Cyber Leaders Workshop (in partnership with WiCyS) - Aspiring cyber leaders will learn strategies to grow leadership skills and gain insights from women who’ve walked the journey to cyber leadership, navigating the pitfalls, challenges and successes. Learners will participate in interactive discussions with women cyber leaders discussing career mapping, mentorship, allyship and taking your seat at the table.

Securing Your Organization

Building Resilient Web Applications with Threat Modeling - Explore the latest industry-standard methodologies and best practices for threat modeling. Hands-on training and exercises will help you apply what you’ve learned to real-world scenarios. Whether you’re a security professional, developer, architect or IT manager, this course is a must for anyone looking to enhance their organization’s security posture.

Evaluating the Security Risks of Products and Services - Developmental product security and product end-user third-party risk management share common goals in addressing security risk. This workshop will introduce analytical techniques that can be used by product developers and acquirers to better determine the security risks associated with products and services.

Learn to Build and Conduct Tabletop Exercises - Tabletop exercises are a valuable tool for organizations to prepare for cyber/privacy incidents and ensure that their incident response plans and playbooks are effective. In this one-day workshop, attendees will learn the basics of planning, developing, conducting and evaluating tabletop exercises and gain hands-on experience in their creation and facilitation.

Securing AI: Cybersecurity Strategy - This advanced workshop will focus on embracing the power of AI while strategically managing risks. Learners will ensure their organization's AI practices are aligned with established risk management and emerging industry best practices. Attendees will learn to implement security across the AI lifecycle using secure-by-design and default principles.

Cybersecurity Certification

CISSP Essentials for Certification and Practice - Engage in a high-level overview of the eight domains of the CISSP certification exam outline and deepen your knowledge of information security in this fast-paced, two-day workshop. Dive into the current security landscape including problem resolution, application security, network security, infrastructure planning, legal considerations, international privacy, investigations, forensics and more.

CGRC® Essentials for Certification and Practice - In this two-day workshop, learners will discover the seven domains in the ISC2 CGRC certification exam outline and expand their understanding of security assessment and authorization. Dig into the most pertinent content to understand before taking the exam with topics including information security risk management programs, scope of the information system, selection, approval, implementation and assessment of controls and more.