NOTE: To view the training dates and registration button clearly put your mobile phone, tablet on landscape layout. Thank you
| Training Mode | Platform | Fee | Enroll |
|---|---|---|---|
| Online Training | Zoom/ Google Meet | 900USD | Register |
| Course Date | Location | Fee | Enroll |
|---|---|---|---|
| 20/07/2026 to 24/07/2026 | Nairobi | 1,500 USD | Register |
| 20/07/2026 to 24/07/2026 | Mombasa | 1,750 USD | Register |
| 17/08/2026 to 21/08/2026 | Nairobi | 1,500 USD | Register |
| 17/08/2026 to 21/08/2026 | Kigali | 2,500 USD | Register |
| 17/08/2026 to 21/08/2026 | Mombasa | 1,750 USD | Register |
| 21/09/2026 to 25/09/2026 | Nairobi | 1,500 USD | Register |
| 21/09/2026 to 25/09/2026 | Mombasa | 1,750 USD | Register |
| 21/09/2026 to 25/09/2026 | Dubai | 4,900 USD | Register |
| 19/10/2026 to 23/10/2026 | Nairobi | 1,500 USD | Register |
| 19/10/2026 to 23/10/2026 | Mombasa | 1,750 USD | Register |
| 16/11/2026 to 20/11/2026 | Nairobi | 1,500 USD | Register |
| 16/11/2026 to 20/11/2026 | Mombasa | 1,750 USD | Register |
| 16/11/2026 to 20/11/2026 | Kigali | 2,500 USD | Register |
| 21/12/2026 to 25/12/2026 | Nairobi | 1,500 USD | Register |
| 21/12/2026 to 25/12/2026 | Dubai | 4,900 USD | Register |
Course Introduction
Modern organizations increasingly depend on vendors, cloud providers, software developers, managed service providers, outsourcing partners, logistics operators, and digital platforms to support critical business operations. While these partnerships improve efficiency and innovation, they also introduce significant cyber risks that can expose organizations to data breaches, operational disruptions, ransomware attacks, and regulatory penalties. This course provides participants with comprehensive knowledge and practical tools required to identify, assess, manage, and mitigate cybersecurity risks arising from third-party relationships and interconnected supply chains.
Cybercriminals are increasingly targeting suppliers and trusted partners as indirect pathways into larger organizations with mature cybersecurity controls. High-profile supply chain attacks have demonstrated how a single compromised vendor can impact thousands of organizations simultaneously, causing financial losses, reputational damage, and prolonged service interruptions. Participants will gain a deep understanding of supply chain attack techniques, third-party vulnerabilities, and strategies for reducing organizational exposure to cascading cyber incidents.
The rapid adoption of cloud computing, software-as-a-service platforms, open APIs, digital ecosystems, and outsourced business processes has expanded the complexity of third-party risk management programs significantly. Organizations must now evaluate cybersecurity risks continuously throughout the vendor lifecycle rather than relying solely on periodic assessments or compliance questionnaires. This course explores advanced approaches for maintaining visibility and control over evolving supplier risk profiles and dependencies.
Regulators and industry standards increasingly require organizations to demonstrate robust third-party cyber risk management practices and supply chain security governance. Financial institutions, healthcare providers, critical infrastructure operators, and government agencies face growing scrutiny regarding vendor oversight, incident reporting, resilience planning, and contractual risk allocation. Participants will examine regulatory expectations and governance models that support compliance while improving organizational resilience and accountability.
Emerging technologies including artificial intelligence, continuous monitoring platforms, cyber risk analytics, software bill of materials frameworks, and automated assessment tools are transforming third-party risk management practices globally. At the same time, geopolitical tensions, software supply chain attacks, and concentration risks continue to challenge organizations worldwide. Participants will evaluate these emerging issues and their implications for strategic cybersecurity planning and operational decision-making.
Through practical case studies, vendor assessment exercises, supply chain attack simulations, and governance workshops, participants will strengthen both technical and strategic capabilities required to manage third-party cyber risks effectively. Upon completion, attendees will possess the expertise necessary to enhance supplier security oversight, strengthen cyber resilience, improve compliance readiness, and protect critical business operations from external threats.
5 days
Cybersecurity managers responsible for third-party risk governance and supplier assurance activities.
Vendor risk management professionals involved in supplier due diligence and monitoring programs.
Information security officers overseeing organizational cyber resilience and external dependencies.
Procurement professionals responsible for vendor selection and contract management processes.
Compliance officers supporting regulatory obligations relating to third-party cybersecurity risks.
Internal auditors evaluating supplier controls and cybersecurity governance effectiveness.
Risk management professionals responsible for operational and cyber risk oversight activities.
Supply chain managers responsible for resilience and business continuity initiatives.
IT managers overseeing outsourced technology services and cloud environments.
Security Operations Center analysts monitoring risks associated with external partners.
Business continuity professionals involved in resilience planning and crisis preparedness.
Senior executives responsible for strategic risk management and governance oversight.
Develop participants' ability to identify, assess, and manage cybersecurity risks arising from vendors, suppliers, service providers, and digital business ecosystems effectively and strategically.
Equip professionals with practical methodologies for conducting third-party cyber risk assessments throughout the vendor lifecycle from onboarding to termination successfully.
Strengthen understanding of supply chain attack techniques, threat actors, and vulnerabilities that affect organizational resilience and operational continuity significantly.
Enable participants to design third-party cybersecurity governance frameworks aligned with business objectives, resilience priorities, and regulatory expectations comprehensively.
Improve competencies in vendor due diligence processes, security questionnaires, audits, and evidence-based supplier assurance assessments effectively.
Build expertise in continuous monitoring approaches that improve visibility into changing supplier risk profiles and emerging cybersecurity threats consistently.
Enhance understanding of contractual security requirements, service level agreements, and risk transfer mechanisms supporting supplier accountability effectively.
Develop practical skills in managing software supply chain risks, open-source dependencies, and technology concentration exposures strategically and sustainably.
Provide knowledge regarding artificial intelligence, cyber risk analytics, and emerging technologies influencing third-party risk management globally and regionally.
Prepare professionals to lead supply chain security initiatives that strengthen resilience, compliance readiness, operational continuity, and stakeholder confidence successfully.
Understanding the importance of third-party cyber risk management within modern interconnected business environments and digital ecosystems.
Examining the relationship between supplier dependencies, cyber resilience, and organizational risk exposure comprehensively.
Understanding governance principles supporting accountability for external cybersecurity risks and vulnerabilities effectively.
Evaluating maturity models used to improve third-party cyber risk management programs successfully.
Understanding cyber threats targeting suppliers, vendors, and software supply chains globally and regionally.
Examining attack methodologies used by threat actors to exploit trusted third-party relationships effectively.
Assessing recent supply chain incidents and their implications for enterprise cybersecurity strategies comprehensively.
Developing proactive defense strategies against indirect and cascading cyber attacks successfully.
Understanding methodologies for identifying cyber risks associated with suppliers and outsourcing arrangements comprehensively.
Evaluating risk assessment frameworks supporting vendor categorization and prioritization initiatives effectively.
Assessing supplier criticality and dependency factors influencing business continuity and resilience significantly.
Developing assessment programs that align with operational and regulatory requirements successfully.
Understanding due diligence processes supporting secure supplier onboarding and engagement decisions comprehensively.
Evaluating cybersecurity questionnaires, audits, and evidence collection approaches for vendor assurance effectively.
Assessing technical controls implemented by suppliers to protect sensitive information assets significantly.
Designing scalable vendor review programs supporting efficient risk management successfully.
Understanding contractual mechanisms used to allocate cybersecurity responsibilities between organizations and vendors effectively.
Evaluating service level agreements and security clauses supporting supplier accountability comprehensively.
Assessing legal and compliance considerations affecting third-party cyber risk management significantly.
Designing governance frameworks supporting oversight and performance monitoring successfully.
Understanding continuous monitoring methodologies supporting dynamic supplier risk visibility comprehensively.
Evaluating cyber intelligence sources used to identify emerging third-party vulnerabilities effectively.
Assessing monitoring technologies that improve decision-making and response capabilities significantly.
Designing intelligence-driven monitoring programs supporting resilience and preparedness successfully.
Understanding software supply chain risks associated with dependencies, libraries, and open-source components comprehensively.
Evaluating software bill of materials frameworks supporting transparency and accountability effectively.
Assessing software development practices that reduce supply chain vulnerabilities significantly.
Designing secure software procurement and governance approaches successfully.
Understanding incident response requirements for supplier-related cybersecurity events and disruptions comprehensively.
Evaluating communication strategies supporting stakeholder coordination during third-party incidents effectively.
Assessing escalation processes and reporting obligations affecting supply chain breaches significantly.
Designing response frameworks that improve resilience and recovery outcomes successfully.
Exploring artificial intelligence applications supporting third-party cyber risk assessment and monitoring comprehensively.
Evaluating geopolitical risks and global supply chain challenges affecting cybersecurity resilience effectively.
Assessing concentration risks associated with critical service providers and technology dependencies significantly.
Designing adaptive strategies that support future organizational resilience successfully.
Understanding implementation approaches supporting enterprise-wide supply chain security capabilities comprehensively.
Evaluating metrics and key performance indicators used for program effectiveness measurement effectively.
Assessing organizational culture factors influencing supplier cybersecurity collaboration significantly.
Designing continuous improvement frameworks supporting long-term resilience and security maturity successfully.
Training Approach
This course will be delivered by our skilled trainers who have vast knowledge and experience as expert professionals in the fields. The course is taught in English and through a mix of theory, practical activities, group discussion and case studies. Course manuals and additional training materials will be provided to the participants upon completion of the training.
Tailor-Made Course
This course can also be tailor-made to meet organization requirement. For further inquiries, please contact us on: Email: training@upskilldevelopment.com Tel: +254 721 331 808
Training Venue
The training will be held at our Upskill Training Centre. We also offer training for a group (at a discount of 10% to 50%) at requested location all over the world. The Onsite course fee covers the course tuition, training materials, two break refreshments, buffet lunch, airport transfers, Upskill gift package, and guided tour.
Visa application, travel expenses, dinners, accommodation, insurance, and other personal expenses are catered by the participant
Certification
Participants will be issued with Upskill certificate upon completion of this course.
Airport Pickup and Accommodation
Airport pickup and accommodation is arranged upon request. For booking contact our Training Coordinator through Email: training@upskilldevelopment.com, +254 721 331 808
Terms of Payment:
Unless otherwise agreed between the two parties’ payment of the course fee should be done 3 working days before commencement of the training so as to enable us to prepare better.
| Training Mode | Platform | Fee | Enroll |
|---|---|---|---|
| Online Training | Zoom/ Google Meet | 900USD | Register |
| Course Date | Location | Fee | Enroll |
|---|---|---|---|
| 20/07/2026 to 24/07/2026 | Nairobi | 1,500 USD | Register |
| 20/07/2026 to 24/07/2026 | Mombasa | 1,750 USD | Register |
| 17/08/2026 to 21/08/2026 | Nairobi | 1,500 USD | Register |
| 17/08/2026 to 21/08/2026 | Kigali | 2,500 USD | Register |
| 17/08/2026 to 21/08/2026 | Mombasa | 1,750 USD | Register |
| 21/09/2026 to 25/09/2026 | Nairobi | 1,500 USD | Register |
| 21/09/2026 to 25/09/2026 | Mombasa | 1,750 USD | Register |
| 21/09/2026 to 25/09/2026 | Dubai | 4,900 USD | Register |
| 19/10/2026 to 23/10/2026 | Nairobi | 1,500 USD | Register |
| 19/10/2026 to 23/10/2026 | Mombasa | 1,750 USD | Register |
| 16/11/2026 to 20/11/2026 | Nairobi | 1,500 USD | Register |
| 16/11/2026 to 20/11/2026 | Mombasa | 1,750 USD | Register |
| 16/11/2026 to 20/11/2026 | Kigali | 2,500 USD | Register |
| 21/12/2026 to 25/12/2026 | Nairobi | 1,500 USD | Register |
| 21/12/2026 to 25/12/2026 | Dubai | 4,900 USD | Register |
We support the development of a skilled and confident workforce to meet the changing demands of growing sectors by offering the best possible training to enable them to fulfil learning goals.
Make a Mark in You Day to Day work