Post on 01-Jul-2020
m) 4-U11JU -1t) Uri
zil 61 .
9/ urniwrn
1Jfl1 . ftalmu41MU1,11A flgh 1ThJN I%I. o IvUd oIan. ni1U noo f
4
v. 4 4 Lin 1fltJfl1fl€ L T4nTn7J 1n ni UJ
lu
rur 'w niutiui,1i iniiniil
1 1flflYã ?flW. 11.n iJiIf Ltt4i1
-
nn4 ¶iniU
G. Unh 1 t114LYIP1
(Security Operations Center: SOC) - 41J Lo&bb U
Uil14I thai nirn i US11Umt,e0o VIM( niii)
, in -i ni iiin jn'a (Enterprise
Architecture Workshop) jum, - tn d* tl wifr
flYJ1'flU WJ1WflJbegoo IJM ( mi€jijiwm) ( iin) a, a ala a *1 i a
n. n Jp.J9nT
Limmugnno ISO 2231:2012 101 m - a Tt
L fivim-win-A iuM t,cn,000 u-r,q nh1JL)
. vi'nii IT Audit for Non - IT Auditor Masterciass UM m a~ -
t* Cu Yflffi flLThJ1%Y 11 l!Goo J1V1 ( 1I- 14) (n11LJ1)
u,u
a' a' a, a.,11 v a.' n' in
Il 0 a
LJ1T3J Nflh1LU
G). 1111J'13J $ ., 0.
a 4o,t, 4 va,'lv4. a
. uiJ L3'%Thfl 11 LL'Ji1
httpi/www.NSlDAacademy.corn/advancedtraining Miz MininatIV179M11 o l!bc c øo i 3
Ma E-mail: npdnstda.or.th
a'
.
n ij'uig' Lyle
ia ii-no un uli nnc. /'* vnn
1Jn-r 4a'
11EJLt qi a JVu1fl1
4
1)J
(IOULNh TMIPUVA)
a, Il
IJI kIJW
u'1 LLfl)
J
ai 0 tA.
- 1 og.oQQb
1
L104 IUIDLIUC
LU
•'u)i 24 a4.p. 2562 iai. I!. •!b.' fln-rt1%,c
cEtJfldi NJiDR
fli3J.
I.
th3J1iu
iu 2 3 al ,ft 2562 ci rn)'1J1EJ1n1 I1Th.
JflOU*J
. n (Security Opations Center: SOC) iU in
@=I--Ml4,juvl 4 OUlAM Wftbo 01 oc.00 - b.00 U. cu EUI)L1 L14114
l4flTJ flfltfl114U1 niii
14114 fl11J0fl 1UfY1J2'14 Ø14J
i1UL19h'11 flJfl L 1V1Sl
. ifl flUTh )nini*ii fl UU1Jfl (Enterprise Architecture Workshop) 114c1 (3
- ini leftin imi o.00 - eb.00 U. irbi nirni
inni neuiuniviu iu nii*ioiun arJ4n
ninn,cnin
ai. M'fl fl1 11ffl1 71 13J3111ai1lTh ISO 22301:2012 iuo - me 1'Ufl1AIJ LIWI oc.00 - b.00 U. CUT54mvAull min (TL.1Y fl1L 3.ii''1.1 12U1'1
m1 nn1,r114 ISO 22301-2012
IT Audit for Non - IT Auditor Masterdass j14 *ce BUIMU.M+141UMA .o - e 119UIFJIJ lm&b ic
'3Ifl oq.00 - b.00 U. (U t,Jull MI -5,19 nirni tIwri4 wii1
Lignni
ua. ni,uin,ij&c
tunid ?C111U1 $L1 t11411TUU1
w.NSTDAacaderny.com/advancedtraining fr 0Un1 1EJ 001W5MVInil
o co 8 etmedm, smacM 444
flfl1.1 lUlUnl iflV10U U I00%
(141v ni)
1fl$fl1 (1, 5.
fl1U1J1fl1 )W it)
lu nran
id Gn
231 M 26Z 114 uini I7P1•U. O)1.:.22.2, 4GV
o co i9 (IJ 1.1i1)
IMIall 0 O NPD458
LthILihInI ( ______
National Science and Technology bevelopment Agency
Paving the Way for Practical S&T Knowledge 11 NSTDA Academy N
(Qj riunuinscinsn
..
® OnU idu Sprunk Arcsight iiio1flunisinsi:i3
uaoflnnUJ6oJ?rUfl1Syflfls:UU
® GnU riiiuciuuini 10 Worhshop 1un1sU1uI1s:5'dAnuLlun1iaoo?1uuzNs:uL
inn1uIaisuincido1uisnth1UU1cicbuouioJ
M&IO
nj
LILI
(Securfty Operations Center: SOC)
ii, nrnio n'vuiiu
31ttTh 24 4)bJ416 uthfli 1 '
! niihwni ussuiu ii:nsiüTnui 14 2
ariueinis (Worhshop) 10 2
SOU 24 4
Lfl 1Jfl1jtj
• •Piwnunii ijiu Lnun1 -
V11Jfi11i24Fi4 U1JUYPl 1P1
fl1Uflfl14LU (Event) i8
tiu (Security incident)
• aTJ fu uf111.
• il 0111 U'J 9 1 L13 SQL Injection,
Cross-site Scriptir (XSS), Brute Force LUU
• Agent uuuut -w
• ri 1 rpicu (Correlation Rules) 01 Lf1a'A1 icinao
• nt nnian
• n1 1a1LLnhiU1 JTh
• • • 01 111 tVv1P1
19U6 01 (Alert) t1lLJ1 (Dashooard)
• iITh (t CERT NOC t41J)
• ILaU1J
• L1J
• Gin1ik1
• an
14%1L1lJU)
-ivaa 34,900 i1 (11J1L31 I.'i)
LI!! a4 LV tH1'JUU'-Rt 2
13% L1U4iTU? 31,410 u1
(entij.utrnT 1 tu
5 - 8 11111J 2.562
iiii 9.00 - 16.00 W. (nyj 1r1'u 4 ')
flnJ,3J) *
iitutm niv i71i 1
- nir fTu ,ALn"v
• I L1 at LY U11Ol.1fl1tfV1flM1€
1liJUU
• n1i e1 U 114'UOUf1.1)
U -)nnr1
,1Q1 a1UiN
Cisco Certified Certified Neork Associate (CCNA),
Certified Ethical Hacker (CEll),
Certified Hacking Forensic Investigator (CHFJ),
Certified Security Analyst (ECSA), ISO/IEC 27001 (Certified of Lead auditor).
Peptink Certified Engineer (PCE), ISO/1EC 20000 (Auditor Certificate) 8CMS 25999
Peplink Sates Specialist (P55), CornpTlA Network+,
L tuni1uimiri D nz.rridiJu
Introduction to Capability Maturity Model Integration V1.2 Certificate CompTiA CySA+
a. %tnni
2. 80%
I •••_. •• - - WEN]
• Image ref. http//www.consortworId.coi
Image ref.- Selected by freeplk
Paving The Way for Practical S & T Knowledge
NSTDA Academy NSTD
EAW Enterprise Architecture Workshop uñ 4
I p
duOnUnsoniOciunssus:uu ñnsounaui 4 S:(iU
'kiiir flS:LJUrflS 6OUa S:UUJ1U lIa:Inntula sEu1nF1 -- -
1
- i
-
• Liuu 'nn rni1 m u n u,jiuvi lul irnnvu1
• U
LflflU flU LtU
• L1u nniU iu n uinrnnu1n ni n u ft
n' n gn -1
• k Un1J1J,J L%ErtJ
• SoFtware Tools 1,9111 Open Source :n'iW'nu jninuni'tnj
• E.1 I!I ¶1LIUfl5fliflW'1 n rthu Jnuwnni :: -
(Information Technology) IiJii (Business) B1fl2J4Th"L1J
L1rnP1'LUEHI4nI1J3J1 LJU 01 LP11YU1JU A J'tli
i9uUn
aunçw
UUU1A1U't1ULU U:tJfl U 4LUFm3JL1UI11U'LU 4 iu :wi' n:tnur1,ftR
(Busness Processes) bate) '1J1J'U (Application) UI 11UL11FthJtU (Related information technology) th€ifu
%ri1JIU 101 01 U0' J:ut.
fln n1unuU1Pn'5w1nnrw1
• 11U1 Luin:iiu Xwi1u1n,ii cnh1U'L0
• Li AhU1€ L1U anLwuJu
iiwr:uiJ rLLr:uu LLLFiYU1U
• L ULLJU11U1ifl
• gu1c
A.tJ'l'1
•J%l ii-L *iifi ISO/IEC 27001 jCertiñeo of Lead auditor).
lS0/EC 20000 (Auditor Certificate] BCMS 25999,
Introduction to Capability Maturity Model Integration
IlL2 Cert:ñcate
'AlUat 24,500 IJ'Th (JI)
L!! 4:LtJU UI!J'UIi11LL 2 pIti4rulti
JghLJfliU% 10% L4L1A4U.Wi1U 22.050 J1YI
(n'LuLijIw'2Jflu 1 'Lu)
€UTh'-11i'U 15-1? wqIflR2.I 2552
k''1 9.00 - 16.00 U. ( UL'i1EI1J3J 3 'U)
• %q ¶Mflfl1 flVJfl1Ufl1J:t1J
1:A1U4nfl1UnJ'flJW4
81Ffl5
•
UlNO11Ffl'i
• LLUfl1U 01U11 UUIJEJ4EJ1I$n' 1JJ1diI
•
an 1UflU'1Fifl Ufl A'4fl'1
U%Ofl'
• fl'TLLU.119 Software Tools LLgI ni,W'nu Software h1A'l.
niunrn:uu
• flflfl1 UflUU1U4flT1Jlc1J
¶€Wk4W
V1flULi
80% 1UTR1fl
811L)
111011AU11 wrFi n1"'
87°" 36r0 24°"° 74'
Paving The Way for Practical S & T Knowledge
__ NSTDA Academy
Man1c1SInaUSUWJIJUCIfliS ISO 22301:2012
• •_ - I- uurnStc1_
•SuunD1UJSaUt5a\JrnSf)
,_F)-U S:UULflU. ua:rnssuuanuu-scrnsnEJodin
K61n1J5nq(5 L?ttiionD1uciaLdaQ?uns:uDurnsuh1sornsnu
'L. • F CL.f
1c1:n ISO 22301:2012 - —
-
RnJarnSUSl-nsornSnEJFflrnulluua)f1SJu
ns1uhnrnsrnsUstUunrnutEJQ wansnu nisniuoaiu anu?urnsiusuu
iTh IIJ1EJ?UR1SIriUS:UUflUILM UaU
U
aiti iciaaonuiurn
U I .j ii ri 'i f.-ru-y v- ,rn - I imc-c'i r ICI 1)fl1 )t1'i . u-s. rHscr-1
Lunu'n-i
LLUUflfl51U L UUU fl 1fl1
n-ini1 i - ici
iJiuw1u
4nnu,nri fl1 LVJI,ULEN
• n -il
• I L 1UlêJ IU
flIIEiBflLWJUiJ Ju1'UU
LLUU LF1aJ1U
ISO 22301:2012
(Business Continuit y Management Systems, lUfl
flflfl
1r
• fl i1'1Uii Scenario
nwti: fl5fl 1fl5
•
•
• fl'1*iUr: u:iunru:utj •
•
• fl tU5flJU
• ninu:iu
• fl Uflfl U Lfli1LV4
,a 1-31;~r YI-I1Wi Rflfl1
150/lEG 27001 (Cerhñed of Lead auditor).
• ISO 22301:2012 Requirements and Frameworks
• Scope of BOMS [Business Contlnuitt.
Management System)
• Addressing Risks and Opportunities
• Business impact An a lysis (BIA)
• Sequence of IT Operations
• Risk Assessment
• Business Continuity Strategy
• Establishing and implementing Procedures
• Exercising and Testing Plan Development
%J1UO9 L UuOL) iubiinr 80%
unn e uiuinn -w-u.
U iIW1 29-31 2562
ttn 9.00 - 16.00 U. [ u1ruJ 3 IUJ
'fiu: 23,000 urni [fln1L3JLIt)
LF11.J 1U Lnñ'uLI1 2
uii'Yi'u 10% 10 LtIVi'flLFl: 20.700 tJfl'
1on1uIuuJñ'u 1 Lu)
iSO/lEG 20000 (Auditor Certi ficate) BOMS 25999,
Introduction to Capability Maturity Mode Integration V4'TR fl'LWW
J1.2 Certicate
-.,..
ennJ
Audit Chair IT Security Advisor - - - - - - - - - - - - - - - - - - - - - - ( z ISACA
ignut
:::
Risk Service . r -
U , RS Thailand
• 111Jfl1f 114 Zi11fli1 • • iii iil
. 1ulunu%n1mlun1o'Lu n1'n
IT AUDIT FOR NON - IT AUDITOR MASTERCLASS
(i Auditor) UU1 lt1nl U 1L1141 thEWU YiJi
?flIflfl i4 11Jiht
1LLL 1.11 dtuni UU'Jt 1U1t
4ifr1
mApi r Audit for Non - IT Auditor Masterdass LUL flfl1fl1 c v 4 a 44
1U 1) LL'v1LflflUO-
LirnuLJ integrated Auditing
njsciinui:tin&i • usnul1nMu41wn Lfl1Ofl
•
• A 1V li IJfl'.J1iJ
• nitti i n
•
•
13JLI
rroOonlsousLJ
•
• uu14ti 11L% (IT Auditor)
•
•
• ISO 27001:2013
• LUfl 1fl 1JVL1114 ISO 19011
• Integrated Audit in Practice
-J
arnunousu
tJ'.41 Wi
mum 9 n iJ'vii Jiii Lvolpmuom n4rn'r1
21,400 u1 (m1tJL')
s&:ioainAnpis
17-21 iiqwmv 2562
vai 9.00 - 16.00 i. 5 -5'u)
QI X=Q 2/
11Jfl,1 11 mLG)qtQo.
1ThJ '1IP1 Jfl513J b&blv
J4
Wan .) ...................... -------
(nnj.) .
(nnL) .
OWL) .
.
.
(nJ.) .
(n91.) .
(niJ.) .
(rnii.) .
.
(rith.) . Owl.) . (fflJ,J.) .
E U14 (n.) .
(rni.) ..... . .................. .
(njgj.) .
(ni.) .
(nii.) .
(rwrn.) .
(mil.) . (ii.) .
(iiin.) .
(nvLL) .
(nrn.) .
Ciu atsuflnuiJu=4
(.) . rnwi (b) .
iuri (m) .
ami ,ni-mminui lu I,
1ML1S1
nn,j -1J
nomiM
I nn1rn1u ,v,
'F
n4 nAf1rnJJ
naub1n nhinhi4i
nLtJ1J1u
nN ' J
flRJ lLt 1%ifli'9V1fl
flJLL U1
nj nJ9v1i1
flU 1)'1
LtUt1Jl,Th1
fl41 flJ%1UcV5
nJut1wi
T11Jfl 9b @'IM qwfl