- Manish Lobin
- Kaleem Ahmed USMANI
- Gustavo Fonseca Ribeiro
Intermediate
Event organizer(s)
Description
This course focuses on enhancing the protection and cyber resilience of Critical Information Infrastructures (CII). These include essential assets, systems, and functions whose disruption or destruction could severely impact a nation’s economy, government operations, public health and safety, as well as national defense and security.
The course introduces participants to key concepts, policies, guidelines, and preparedness measures essential for safeguarding CII. It also examines practical implementation aspects and the legal framework underpinning national CII protection policies.
This training targets critical infrastructure owners, operators, and managers, as well as government officials and other professionals responsible for critical infrastructure oversight, including Chief Information Officers (CIOs) and IT Managers.
Participants should be affiliated with a Critical Information Infrastructure sector and possess at least a basic understanding of cybersecurity concepts. Prior exposure to incident response, risk management, or compliance is an advantage.
Upon completion of this course, participants will be able to:
- Define the concept and characteristics of Critical Information Infrastructures (CII)
- Explain the appropriate organizational structures, policies, and processes of CII
- Assess and manage security risks pertaining to CII
- Formulate security measures to protect CII
The training will be delivered online through the ITU Academy Platform, featuring live sessions conducted by instructors via Zoom. Throughout the course, participants will complete practical exercises assessed on a pass/fail basis and receive formative feedback during the subsequent session. Late submission will result in a fail grade, while timely submission will be graded as a pass. In addition, participants will complete two short quizzes and a final examination consisting of approximately 25–30 questions.
The evaluation will be carried as follows:
- Active Participation: 10%
- Practical Exercise – Case Study (Day 2): 10% (Pass / Fail)
- Short Quiz #1: 10%
- Practical Exercise – Case Study (Day 3): 15% (Pass / Fail)
- Short Quiz #2: 15%
- Exam (Day 4): 40%
A total score of 70% or higher is required to obtain the ITU certificate
Day 1: 04 November – 11:00–14:00 (CEST)
• Introduction to Critical Information Infrastructure Protection (CIIP) will cover CIP concepts and principles, CII identification approaches, CIIP action planning, governance structures, legal and regulatory frameworks, and common CIIP challenges.
Learning Outcomes
• Describe the concept and characteristics of Critical Information Infrastructures (CII).
Training Activities
• Live lecture with slides
• Group work
Day 2: 05 November – 11:00–14:00 (CEST)
• Risks to Critical Information Infrastructures will cover methods to identify risks to critical infrastructures and CII risk-management models.
• Information Sharing will cover the CII approach to information sharing and its importance for resilience.
• Supply Chain Security will cover maintaining supply chain security within CII environments.
Learning Outcomes
• Assess and manage security risks pertaining to CII.
• Explain information-sharing concepts and supply chain security in CII.
Training Activities
• Live lecture with slides
• Group work
• Practical Exercise #1: Case Study
• Short Quiz #1
Day 3: 06 November – 11:00–14:00 (CEST)
• CIIP Implementation, Audit and Compliance will cover implementation approaches, processes for maintaining compliance, and CII compliance frameworks.
• Cybersecurity Awareness will cover cybersecurity awareness in the context of CII and its role in national resilience.
• Monitoring and Evaluation of the CIIP Programme will cover approaches to assess implementation and effectiveness.
Learning Outcomes
• List key processes for maintaining compliance in CII.
• Characterize the importance of cybersecurity awareness in CII.
• Monitor and evaluate the implementation and effectiveness of the CIIP programme.
Training Activities
• Lecture slides
• Feedback/Debrief of Practical Exercise #1
• Practical Exercise #2: Case Study
• Short Quiz #2
Day 4: 07 November – 11:00–12:00 (CEST)
• Final Exam will be conducted on 7 November with a duration of one hour. The exam will remain open from 7 to 14 November 2026.
Training Activities
• Final Exam
Tutors
Registration information
Unless specified otherwise, all ITU Academy training courses are open to all interested professionals, irrespective of their race, ethnicity, age, gender, religion, economic status and other diverse backgrounds. We strongly encourage registrations from female participants, and participants from developing countries. This includes least developed countries, small island developing states and landlocked developing countries.
