Cybersecurity

NIST Cybersecurity Lead Implementer

This course develops practical expertise to apply key NIST publications and frameworks to assess security controls, manage risk, and build a cybersecurity program aligned with organizational objectives and security needs.

4 daysExam includedPhysical classroomOnline classroomSelf-study
2,500+ professionals trained100 % pass rate120+ countries600+ organisations
PECB
27 Apr – 30 Apr
Language
EN
LocationLausanne / Morges & Online
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
18 May – 21 May
Language
EN
LocationParis & Online
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
8 Jun – 11 Jun
Language
EN
LocationLausanne / Morges & Online
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
10 Aug – 13 Aug
Language
ENFR
LocationParis - France
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Confirmed
PECB
Available year-round
Language
ENES
Format
Self-study
Self-study
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Official PECB certification
  • One free retake exam
No date works for you?
Request a private or flexible session

Key takeaways

Explain fundamental cybersecurity concepts and how NIST guidance structures them
Support compliance with NIST SP 800-12, SP 800-53, RMF, SP 800-171, and the NIST CSF
Select and evaluate security controls aligned with organizational risk and objectives
Establish risk and incident management approaches supported by evidence and metrics
Design and optimize a cybersecurity program with monitoring and continual improvement

Your trainers for this course

jean-munyarugerero
Jean MUNYARUGERERO

PECB ISO 27001 Senior Lead Auditor · ISO 27001 Lead Implementer · CISM® Exam Bootcamp · ISO 27005 Risk Manager · CISA® Exam Bootcamp

Passionate Information Security and Business Continuity trainer with hands-on experience auditing, designing and implementing management systems. His journey spans finance, cloud services, software engineering, public sector, NGOs and beyond, so he understands your challenges.

Senior cybersecurity and GRC expert. Delivered 35+ enterprise-scale projects auditing and designing information security, privacy, and business continuity programs.
10+Years of experience
35+Projects delivered (cybersecurity, continuity, risk, audit)
8+professional certifications
Multi-industryexperience (finance, cloud, public, NGOs)
Alexis HIRSCHHORN
Alexis HIRSCHHORN

ISO 22301 Lead Implementer · ISO 27001 Lead Implementer · CISSP® Exam Bootcamp · CISM® Exam Bootcamp · ISO 27701 Lead Auditor

Expert in Information and Cyber Security, Cloud Security, Risk Management and Governance Consulting for large multinational corporations, government entities and international organizations Management Systems Certified Lead Auditor

25 years of hands-on experience in information security, cloud cybersecurity, and AI governance. Advisory work with major multinationals, government bodies, and international organizations across multiple countries. Certified ISO 42001 Lead Implementer, CAIP, CISSP®, CISM®, CISA®, and PECB Certifying Auditor. PECB Certified Trainer.
100+ISO 27001 implementations
200+Organisations audited
25+Years of experience
12Certifications
Meet all our trainers →
PECB
NIST Cybersecurity Lead Implementer · Titanium Partnerhighest PECB accreditation levelTitanium Partner

Page contents

Course Description

Cybersecurity has become a governance issue, not just a technical one. In the 2024–2025 environment, organizations are expected to demonstrate structured cybersecurity programs that align with business objectives, regulatory obligations, and evolving threat landscapes. NIST publications are widely referenced, but many organizations struggle to apply them consistently and defensibly across governance, risk, and operations.

This course focuses on how NIST guidance is used in real organizations. Participants work through how frameworks such as NIST SP 800-12, SP 800-53, SP 800-171, the NIST Risk Management Framework, and the NIST Cybersecurity Framework fit together to support decision-making, accountability, and operational execution. Rather than reviewing standards in isolation, the training shows how they collectively support a structured cybersecurity program.

Throughout the course, participants actively analyze organizational context, define roles and responsibilities, design cybersecurity policies, select and assess security controls, and structure risk management and incident response processes. Practical exercises and a continuous case study are used to mirror the realities of cross-functional cybersecurity work involving IT, risk, compliance, and management stakeholders.

Abilene Academy’s approach emphasizes traceability and justification. Participants learn how to explain why controls are selected, how risks are accepted or treated, and how cybersecurity performance is measured and reported. The focus is on producing outputs that withstand management review, audit scrutiny, and regulatory questioning.

By the end of the course, participants are equipped to design, evaluate, and improve cybersecurity programs that are aligned, reviewable, and operationally effective.

  • By the end of this course, you will be able to discuss fundamental cybersecurity principles and support compliance with key NIST publications, including NIST SP 800-12, NIST SP 800-53, NIST RMF, NIST SP 800-171, and the NIST Cybersecurity Framework.

    You will learn how to assess and advise on security controls in alignment with NIST guidelines, provide guidance on cybersecurity risk management and incident management strategies, and guide organizations in developing and optimizing cybersecurity programs.

Professional Testimonials

Had a great experience learning with Abilene Academy, it has been an extremely long time since I have attended an external formal training outside of the business organization I work in. I found this training to be truly beneficial for me to attend. the overall delivery of the course by Henri was superb, he kept us well engage despite having half of the room online and half face to face. The communication from the advisors from the initial enquiry regrading the course up until now has also been great! definitely recommending to my colleagues. Thank you!
TG

Tracey Gillett

Crisis and Operations Management

TUI
Henri and Alexis conducted a focused, intensive four-day ISO/IEC 27001 Lead Implementer Course of immediate relevance to The Global Fund. Participants representing both IT and Risk are now better prepared to design and operationise a corporate ISMS.
AT

Andreas Tamberg

Senior advisors enterprise risk management

The Global Fund
Another stellar training course run by Abilene, thank you for the outstanding organization and logistics. The PECB training material is very rich, well presented with clear explanations and notes.
SB

Simon Baynes

BCMS Manager

MSC MEDITERRANEAN SHIPPING COMPANY SA

Frequently Asked Questions

How do NIST SP 800-53, NIST RMF, and NIST CSF fit together in practice?

In practice, the NIST CSF helps structure outcomes, the RMF guides the risk-based process, and SP 800-53 provides a catalog of controls to implement and assess.

Framework outcomes, risk process, and controls form one system.

Jean MUNYARUGERERO

PECB ISO 27001 Senior Lead Auditor • ISO 27001 Lead Implementer

NIST CSFNIST RMFNIST SP 800-53controls

Who should take this course if they are not in a security role?

Non-security leaders and technical owners should take it when they must oversee risk, controls, and compliance expectations tied to NIST-aligned requirements.

You don't need a security title to own security outcomes.

Jean MUNYARUGERERO

PECB ISO 27001 Senior Lead Auditor • ISO 27001 Lead Implementer

executive cybersecuritysystem ownersIT managementNIST compliance

What does "assessing security controls" mean in a NIST context?

It means evaluating whether selected controls are appropriate, implemented as intended, and effective for the system's risk and operational context.

A control exists only if you can show it works.

Jean MUNYARUGERERO

PECB ISO 27001 Senior Lead Auditor • ISO 27001 Lead Implementer

control assessmentNIST controlsevidencerisk acceptance

How should supply chain risk management be treated in a cybersecurity program?

Treat supply chain risk as part of system risk by identifying dependencies, setting requirements for suppliers, and monitoring ongoing exposure.

Your security boundary includes your dependencies.

Jean MUNYARUGERERO

PECB ISO 27001 Senior Lead Auditor • ISO 27001 Lead Implementer

supply chain riskthird-party riskNISTrisk management

What is a practical incident management approach for NIST-aligned organizations?

A practical approach defines roles, detection and escalation paths, response procedures, and post-incident learning backed by testing and metrics.

Incidents are handled best when the work is rehearsed.

Jean MUNYARUGERERO

PECB ISO 27001 Senior Lead Auditor • ISO 27001 Lead Implementer

incident managementincident responseNISTcybersecurity metrics

Last updated:

Train with practitioners. Pass with confidence.

Abilene Academy is the only PECB Titanium Partner in Switzerland — the highest accreditation tier in the industry — delivering certified training in information security, data protection, AI governance, and GRC compliance. 99% exam pass rate. 2,500+ professionals trained across 120+ countries and trusted by 600+ organizations. Multilingual programmes available.

99%
Exam pass rate
2,500+
Professionals trained
120+
Countries reached
Titanium
The only PECB Titanium Partner in Switzerland
Certification included
Multilingual
EN · FR · ES · DE · IT and more

Trusted by 600+ organisations in 120 countries

  • Airbus logoAirbus
  • Altis logoAltis
  • BCEAO logoBCEAO
  • BCV logoBCV
  • Cargolux logoCargolux
  • Cartier logoCartier
  • Cofco Intl logoCofco Intl
  • Confédération SuisseConfédération Suisse
  • Council of Europe logoCouncil of Europe
  • Dell logoDell
  • Deloitte logoDeloitte
  • Devillard logoDevillard
  • Ebay logoEbay
  • Engie logoEngie
  • Etat de Fribourg logoEtat de Fribourg
  • Etihad Airways logoEtihad Airways
  • Eumetsat logoEumetsat
  • EY logoEY
  • Framatome logoFramatome
  • G42 logoG42
  • Gavi logoGavi
  • Republique et canton de Genève logoRepublique et canton de Genève
  • Groupe Mutuel logoGroupe Mutuel
  • HSBC logoHSBC
  • International atomic energy agency logoIAEA
  • IATA logoIATA
  • IBM logoIBM
  • international Labour organization logoILO
  • IMD logoIMD
  • KPMG logoKPMG
  • Kudelski Security logoKudelski Security
  • Loterie Romande logoLoterie Romande
  • MSC logoMSC
  • Nagra logoNagra
  • nespresso logoNespresso
  • Nestlé logoNestlé
  • Novartis logoNovartis
  • Payot SA logoPayot SA
  • Philips logoPhilips
  • PSA PanamaPSA Panama
  • PWC logoPWC
  • Richemont logoRichemont
  • Roche logoRoche
  • RTS Radio Télévision SuisseRTS
  • Santander logoSantander
  • SAP logoSAP
  • https://www.skyguide.ch/Skyguide
  • Société Générale logoSociete Generale
  • Swisscom logoSwisscom
  • SyzSyz
  • The Global fund logoThe Global fund
  • UNGSC logoUNGSC
  • International computing center logoUNICC

We use cookies to improve your experience

Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.