Cybersecurity: Real-Time Risk Management

The “Cybersecurity for Businesses” program was jointly designed by CATÓLICA-LISBON and TÉCNICO+ with the goal of providing a comprehensive understanding of the current risks associated with Information Technologies and the management practices needed to protect organizations. The program addresses both the technological and human components of information systems, with a special focus on their vulnerabilities. It identifies key risks and the resources needed to manage them, followed by an integrated view of the governance of those resources — with a particular emphasis on people. The program concludes with the development of a cybersecurity protection plan and a high-pressure decision-making simulation in the event of a cyberattack.

The Importance of Cybersecurity in Organizations

Cybersecurity is more critical than ever, given the recent shifts in social and professional paradigms. Organizations and individuals are increasingly reliant on digital devices, with the internet serving as the main channel for work, communication, and information sharing among teams, friends, and families. This scenario inevitably leads to greater exposure to cyberattacks. A few examples: In April 2020, the World Health Organization (WHO) reported a significant increase in cyberattacks targeting its staff and fraudulent emails sent to the public since the onset of the COVID-19 pandemic. In June 2020, both Honda and Life Healthcare were also hit by cyberattacks. These incidents caused severe damage, ranging from lost revenue to ransom demands from hackers that can reach millions of euros.

Program Structure

Discover the learning modules and unlock your full potential.

Cybersecurity Governance

This module addresses the fundamental aspects of information security management, incorporating best practices within a holistic cybersecurity management framework. The module concludes with a demonstrative exercise simulating an incident and its management.

Current Information and Communication Technologies

This module introduces the main current Information and Communication Technologies, enabling participants to understand cybersecurity issues and solutions: vulnerabilities, technological protections, and processes. Potential targets of attacks—both systems and data, will be highlighted.

What You Need to Know About Cybersecurity

This module defines what cybersecurity is and covers key concepts such as security properties, vulnerability, attack, and threat. It addresses both technical and human vulnerabilities, as well as the main current types of threats.

Practical Cybersecurity Mechanisms for Managers

This module presents the technological mechanisms that protect against cyberattacks. While not implemented directly by managers, understanding these mechanisms is essential, as they are critical components of a robust security solution.

How to Manage Cybersecurity Proactively

This module provides the foundational measures organizations must take to mitigate the risk of cyberattacks and prepare appropriate response strategies.

How to Build Your Cybersecurity Plan

The final module offers participants the necessary tools and insights to begin structuring their organization’s Cybersecurity Plan.

Program Directors:

Paulo Cardoso do Amaral

PhD in Information Systems (Université Pierre et Marie Curie) Bachelor's degree in Telecommunications Systems and Computer Engineering (IST). MBA in International Management from CATÓLICA-LISBON. Visiting Assistant Professor at CATÓLICA-LISBON since 1996, where he is Coordinator of the Executive Master in Digital Innovation and teaches in master's and bachelor's degree programs and in The LisbonMBA. He is also a visiting professor in the MBA programs at Tsinghua University in Beijing and Solvay Business School in Brussels. He was CIO at Portugal Telecom and Grupo CGD, and director of Grupo Sinfic. He is currently an entrepreneur, founder, and director of Token Trust (tokenization of regulated financial assets) and Fundação Cardoso do Amaral (social economy).

Miguel Pupo Correia

Full Professor at the Instituto Superior Técnico of the University of Lisbon and senior researcher at INESC-ID. He has been involved in several research projects in the field of cybersecurity and privacy, among which the European projects MAFTIA, CRUTIAL, ReSIST, TCLOUDS, PCAS, SafeCloud, QualiChain and SPARTA stand out. His main interests are: blockchain and Byzantine consensus; cloud security and reliability; trusted computing; software security; mobile security and reliability; intrusion detection and big data analytics; and communications security.