TÜV SÜD Advanced Certificate in Cyber Security

This module enables a professional to have a thorough understanding and knowledge of networking fundamentals, security concepts, and hands-on experience through practical labs.

• Understand the basics of networking and network devices
• Analyse network traffic using packet capture tools
• Identify and mitigate common network vulnerabilities
• Implement security policies and access control mechanisms
• Configure network security devices such as firewalls and VPNs
• Utilise security information and event management (SIEM) tools
• Conduct network forensics investigation 

NOTE: Successful completion of TÜV SÜD Certified Network Security Professional (CNSP) module is mandatory.

Know more

This module enables a professional to have a thorough understanding and knowledge to secure web, desktop, and mobile applications from fundamental security concepts to advanced techniques

• Fundamental concepts of application security
• Detailed understanding of OWASP Top 10 vulnerabilities
• Techniques for securing web, desktop, and mobile applications
• Hands-on experience with various security tools and practices
• Methods for identifying and mitigating security risks
• Best practices for secure coding and application development

NOTE: Successful completion of TÜV SÜD Certified Application Security Professional (CASP) module is mandatory.

Know more

This module combines two critical aspects of cybersecurity and IT operations, proactively identifying and mitigating potential threats (risk management) and effectively responding to actual security breaches or service disruptions (incident management).

• IT Risk & Incident Management Fundamentals – Relationship between risk and incident management based on NIST Cybersecurity Framework
• Legal, Regulatory, and Ethical Considerations - Understanding relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI DSS, local Indian regulations).
• Tools and Technologies - Risk Management Tools like Risk registers and GRC platforms. Incident Response Tools like SIEM (Security Information and Event Management), EDR (Endpoint Detection and Response), SOAR (Security Orchestration, Automation, and Response), forensic tools, ticketing systems.
• ISO/IEC 27035 Information Security Incident Management standard - A detailed discussion on recommendations of this standard and providing guidelines for organizations to establish a systematic approach to detecting, reporting, responding to, and recovering from security incidents.
• Case Studies and Practical Exercises - Analyzing real-world incident scenarios and risk assessments, developing incident response playbooks and conducting tabletop exercises or simulated incident drills.

NOTE: Successful completion of TÜV SÜD Certified IT Risk and Incident Management Professional - CRIMP module is mandatory.

This module can be substituted with ISACA’s CISA OR CISM OR CRISC certifications OR (ISC)2's CISSP certification.

Know more

This module provides in-depth knowledge and practical skills to design, implement, manage, and assess the security of cloud computing solutions. Gain the expertise needed to protect data, applications, and infrastructure across various cloud platforms and service models.

• Fundamentals of Cloud Computing & Security - Cloud service models, deployment models, shared responsibility model, key cloud security challenges.
• Cloud Infrastructure Security - Securing compute, storage, and networking resources; virtualization security; container and serverless security.
• Identity and Access Management (IAM) - Federated identity, multi-factor authentication (MFA), role-based access control (RBAC), privileged access management (PAM) in the cloud.
• Data Security in the Cloud - Data classification, encryption (at rest, in transit, in use), key management, data loss prevention (DLP).
• Application Security in the Cloud - Secure software development lifecycle (SSDLC) for cloud applications, API security, DevSecOps principles.
• Cloud Network Security - Virtual private clouds (VPCs), security groups, network segmentation, intrusion detection/prevention systems (IDS/IPS), web application firewalls (WAFs).
• Security Operations and Incident Response - Logging, monitoring, security information and event management (SIEM) in the cloud, incident response planning and execution.
• Governance, Risk, and Compliance (GRC) - Cloud security frameworks, audit and compliance, legal and regulatory considerations. Discussions on standards like ISO/IEC 27017, ISO/IEC 27018, Cloud Controls Matrix, NIST Framework.
• Platform-Specific Security - Deep dives into security features and best practices for leading cloud providers (e.g., AWS, Azure, Google Cloud).
• Emerging Technologies & Trends - Security implications of AI/ML in the cloud, IoT security in cloud ecosystems, confidential computing.
• The effect of AI on Cloud - How the emergence of AI has impacted cloud services, regulations and the users and providers. 

NOTE: Successful completion of TÜV SÜD Certified Cloud Security and Governance Professional - CCSGP module is mandatory.

 This module can be substituted with CSA’s CCSK Foundation OR CCSK Plus OR (ISC)2's CCSP certifications.

Know more

This module provides a comprehensive exploration of the intertwined fields of Data Privacy and Artificial Intelligence. Learners will learn the fundamental principles of each discipline, understand how they influence and constrain one another, and examine the technical, ethical, and legal frameworks essential for developing and deploying responsible AI systems that respect individual privacy.

• Core Concepts in Data Privacy - Defining Privacy, Fundamental Privacy Principles, Privacy Harms and Introduction to Privacy Enhancing Technologies (PETs).
• Core Concepts in Artificial Intelligence - Introduction to AI, Machine Learning Fundamentals; Types of ML, The Machine Learning Pipeline, Deep Learning Basics and Overview of Ethical Considerations in AI.
• Responsible AI Development and Deployment - Privacy by Design in AI Systems, Fairness, Accountability, and Transparency (FAT/XAI) in AI, Auditing AI for Privacy and Bias.
• Future Directions and Advanced Topics - Privacy Challenges in Generative AI, The Ethics of AI Nudging and Persuasion, Neuro-rights and Mental Privacy, Quantum Computing's Impact on Privacy and AI, The Evolving Role of Data Fiduciaries and Privacy Professionals in an AI World and Open Research Problems and Societal Debates.
• Case Studies - Analyzing real-world examples of AI systems and their privacy implications across various sectors (e.g., healthcare, finance, surveillance, social media, generative AI).

Note: Successful completion of TÜV SÜD Certified Data Privacy and AI Management Professional - CPAMP module is mandatory.

This module can be substituted with ISO 42001 Artificial Intelligence Management System (AIMS) Lead Auditor OR Lead Implementer and ISO 27701 Privacy Information Management System (PIMS) Lead Auditor OR Lead Implementer

Know more

ISO 27001:2022 international standard specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.

Note: Successful completion of ISO 27001 ISMS Lead Auditor OR Lead Implementer module is mandatory.

This certification can be accepted from outside of TÜV SÜD.

This module ties all the concepts together providing additionally essential knowledge about cyber security best practices that an ACCS candidate must be aware of.

Successful completion of the ACCS Qualifier module is mandatory to achieve ACCS Qualification.