NCPC Courses scheduled and delivered through NUARI

MGT-328 Critical Thinking and Risk Management in a Cyber-Converged World - This survey course enables leaders to define and determine business risk related to cybersecurity in a multifaceted environment. Participants are exposed to complex analysis and decision making related to risk. They will explore the importance of critical thinking and apply it to combined cyber, physical and information problems. Students will gain an appreciation for a standardized terminology and be introduced to methods of measuring risk. This course also introduces participants to Factor Analysis of Information Risk (FAIR) and other models to aid in analysis. In-person or virtual instruction. 1/2-day course 

AWR-301 Cybersecurity for Educational Leaders - This is an awareness-level, non-technical course focused on educational institutions with training to assist them in addressing cybersecurity threats. Educational institutions of all sizes (including universities, colleges, and K-12 school districts) are data-rich, making them targets for cyber-attacks. Cybersecurity readiness is not solely a technology issue; it includes managing student safety, well-being, and digital risks. The leadership is responsible for managing the cybersecurity risk for our schools.  In-person instruction.  1-day course

AWR-432 Integrating Cyber Hazard Response into Exercise Planning - This course teaches planners how to incorporate cyber into All Hazard exercises. Exercise planners know cyber-hazards exist. However, only some have cyber experience that informs how to include the hazards in an exercise. Also, they may need to recognize how cyber hazards impact critical infrastructure. This course ensures exercise planning teams are aware of risks related to cyber-enabled threats and how to address them within exercise programs.  In-person or virtual instruction.  1/2-day course

AWR-428 Practical Internet of Things (IoT) Security - Learn about the Internet of Things, find and test it on your network, and discuss ways to determine risk and protect your organization. This course is designed for a broad audience, including IT and security staff, non-technical leadership and staff, government personnel, and anyone interested in understanding the impact of the Internet of Things on organizational security.  In-person instruction.  1-day course

AWR-427 Cybercrime Insight and Introduction to Digital Evidence Identification - Introduces law enforcement, First Responders, and related and interested parties to recognizing potential digital evidence. Practical information helpful for everyone from patrol officers to detectives, those that support them, or who may enter the field in the future. In-person instruction.  1-day course

AWR-383 Cybersecurity Risk Awareness for Officials and Senior Management - This course helps officials and senior management work more effectively with their Information Technology (IT) and other departments to mitigate cyber threats. The training is tailored to government, critical infrastructure, and private sector personnel responsible for directing and developing policy within their organization. In-person instruction.  1/2-day course

PER-398 Cybersecurity Resiliency in Industrial Control Systems - Shift from IoT to Industrial Internet of Things (IIoT), Industrial Control Systems (ICS) and Operational Technology (OT). Learn the differences between incident response activities on your Information Technology (IT) networks and OT. This course is designed for a diverse audience, including IT and OT staff, government officials, business owners and operators, risk management personnel, and individuals from critical infrastructure sectors interested in Industrial Control Systems and Operational Technology security. In-person instruction.  1-day course

PER-338 - Cybersecurity in a Resource Constrained Environment for Public and Rural Utilities - The course introduces foundational cybersecurity principles in the context of community and critical infrastructure protection. Through classroom instruction, guided labs, and applied exercises, participants explore common threats, examine open-source tools for monitoring networks and systems, and review key cybersecurity standards and policies. Using these concepts, participants will develop a practical outline for a cybersecurity program that reflects their organization’s resources and operational realities, incorporating both technical and administrative controls to support ongoing program development and implementation. In-person instruction.   2-day course

MGT-362 Community-Level Cybersecurity Planning and Training Gap Analysis – Designed as a collaborative community approach to identifying the gaps in cyber plans and the training needed in cybersecurity for all levels of community personnel and local critical infrastructure partners. At the end of this course, participants will be able to conduct a community cybersecurity gap analysis resulting in a cybersecurity training plan for all levels of community personnel and local critical infrastructure partners. In-person instruction.   2-day course 

Maritime Cybersecurity Compliance Fundamentals - This course provides management-level instruction on maritime cybersecurity compliance requirements for personnel with responsibilities involving Information Technology (IT) and Operational Technology (OT) systems within the domain of the Marine Transportation System (MTS). This course is designed to enable participants to interpret and apply federal cybersecurity requirements established under 33 CFR § 101.650(d), the Maritime Transportation Security Act (MTSA), MARSEC Directive 105, and U.S. Coast Guard Policy Letter 01-25. Virtual instruction.  1-day course

Developing a Resilient Cyber Secure Community - This course will provide flexibility to tailor training based on the community’s current capabilities, functions and roles represented, and C2M2 maturity level. It will meet organizations where they currently are, emphasizing whole-of-community coordination, collaboration, and planning. The course will work within the National Preparedness System’s preparedness cycle, focusing on Plan, Train, and Exercise. At the end of this course, participants will be able to measure their current preparedness, identify gaps, and experience role-playing through a community-level response scenario of an event that has either a cyber root cause or a cyber-attack that degrades response. The result of this training would be a more aware, resilient, cybersecure community. In-person instruction.   1-day course 

Courses held online, with self-paced learning material and recordings.

AWR-388-W Cyber Security Awareness for Municipal, Police, Fire, and EMS IT Personnel - This course covers basic cyber awareness for Municipal, Police, Fire, and EMS Information Technology personnel. Participants will have an increased knowledge of threats specific to their jurisdiction and an understanding of the processes and procedures needed to develop a cyber-awareness program. This course will focus on the steps involved in being aware of cyber threats and effectively communicating the processes and procedures to protect users against common cyber threats. 2 Hours. Web-based Training (Self-Paced)

AWR-389-W Incident Response for Municipal, Police, Fire, and EMS Information Technology Personnel - This course is the second training in a two-part course. It is intended to introduce the basics of the incident response process to the Information Technology personnel in Police, Fire or EMS departments. This web-based course focuses on the steps involved in being aware of common cyber incidents, as well as steps in developing an incident response plan. 2 Hours. Web-based Training (Self-Paced)

AWR-398-W Introduction to Information Sharing and Analysis Organizations - This course introduces the basics of the cybersecurity information sharing processes. Participants will gain knowledge of cybersecurity information sharing and an understanding of how to join or establish an Information Sharing and Analysis Organization (ISAO) or Information Sharing and Analysis Center (ISAC). This course introduces elected officials at multiple levels (State, Local, Tribal, Territorial), as well as senior management and decision-makers (including for commercial entities), to the value proposition of sharing cybersecurity information. 2 Hours. Web-based Training (Self-Paced)