Private Cyber Risk Training

Cyber Risk Intelligence
for Boards, Leaders
& Their Teams

DORA · NIS2 · EU AI Act · Cyber Risk Governance

Delivered by internationally recognised experts through ICTTF and the EU Cyber Academy. Closed-cohort, bespoke sessions designed for decision-makers who need clarity, not jargon — and for the professionals who must implement and sustain compliance.

Designed for organisations that need:

Board-Level Clarity

Translate regulatory complexity into accountable leadership decisions.

Regulatory Confidence

Understand obligations across DORA, NIS2, the EU AI Act and cyber governance.

Practical Implementation

Equip the teams responsible for embedding, evidencing and sustaining compliance.

30+
Years Expert Experience
3
Major EU Regulatory Frameworks
100%
Private Closed-Cohort
C-Suite
to Practitioner Level
Why Private Training

The Governance Gap is a Liability

Regulation does not wait. DORA, NIS2, and the EU AI Act impose legal obligations on boards and senior management — not just IT departments. Generic courses do not address your organisation's specific risk profile, sector, or governance structure.

⚖️

Regulatory Accountability Has Moved to the Boardroom

NIS2 and DORA place explicit personal liability on directors and C-suite officers. Your board must be informed, not just informed about.

🎯

Generic Training Leaves Gaps That Auditors Find

Our programmes are mapped to your sector, your risk register, and your current maturity — delivering evidence of genuine competence.

🔒

Confidential Environment for Candid Discussion

Closed-cohort sessions allow your leadership to speak openly about real risks, incidents, and gaps — without external exposure.

Directors and senior management are now personally accountable under NIS2 for the adequacy of their organisation's cyber risk management. Awareness is no longer sufficient — demonstrable competence is required.
NIS2 Directive, Articles 20 & 32 | EU Parliament, 2022
ICTTF and the EU Cyber Academy bring together leading practitioners, advisors to NATO and national agencies, and regulatory specialists to deliver training that reflects how threats and compliance obligations actually operate — not how textbooks describe them.
Our Programmes

Training Designed for Every Level of Oversight

From half-day board briefings that cut through regulatory complexity, to multi-session professional programmes that build measurable team capability — all delivered privately, on your terms.

Financial Sector · Board & Executive
DORA
Digital Operational Resilience Act

A focused executive briefing equipping your board and senior leadership to understand DORA obligations, oversight responsibilities, and the governance framework your organisation must demonstrate.

Board Members C-Suite Risk Committee Audit Committee
  • DORA scope, obligations & enforcement timeline
  • ICT risk management framework requirements
  • Third-party & supply chain risk oversight
  • Incident reporting obligations for leadership
  • Board-level questions you must be able to answer
  • Resilience testing: TLPT oversight responsibilities
Half-day · Full-day · Multi-session available
All Sectors · Board & Executive
NIS2
Board Briefing Programme

Designed specifically for non-technical directors and executives, this briefing translates NIS2's risk management and reporting obligations into board-level governance language and decision-making frameworks.

Board Directors CEO / CFO General Counsel NEDs
  • NIS2 personal liability provisions explained
  • Essential vs. Important entity classification
  • 10 mandatory security measures: board oversight
  • Incident reporting: 24h / 72h / 30-day obligations
  • Supply chain security governance responsibilities
  • Regulatory scrutiny and enforcement expectations
Half-day executive briefing format
All Sectors · Internal Teams
NIS2
Professional Implementation Programme

A comprehensive programme for CISOs, security managers, compliance officers, and operational teams responsible for implementing and sustaining NIS2 compliance across the organisation.

CISO / CSO Compliance Teams Security Managers IT Leadership
  • Full NIS2 technical requirements deep-dive
  • Gap assessment methodology & remediation planning
  • Incident response & reporting procedures
  • Supply chain security programme design
  • Evidence collection & audit preparation
  • Liaison between technical teams and board
Multi-session programme · Cohort or 1-to-1
All Sectors · Board & Leadership
EU AI Act
Board & Leadership Briefing

The EU AI Act introduces risk-based obligations for organisations deploying or developing AI systems. This briefing helps boards understand their governance role and the compliance obligations now active.

Board Members C-Suite Risk Officers Legal Teams
  • AI Act risk classification: prohibited, high, limited, minimal
  • High-risk AI system obligations for your sector
  • Governance, accountability & human oversight
  • Data governance and transparency obligations
  • Enforcement timeline & penalty framework
  • Intersection with GDPR, NIS2 and DORA
Half-day · Bespoke sector-specific versions available
All Sectors · Board & C-Suite
Cyber Risk Oversight
Board Governance Masterclass

Drawing directly on Paul C Dwyer's acclaimed work, this masterclass gives boards the frameworks, language, and oversight tools to govern cyber risk with the same rigour as financial risk.

Board Directors Chair / CEO Audit Committee Risk Committee
  • Cyber risk as a board-level strategic risk
  • The 5 questions every director must ask
  • Cyber risk appetite: setting and monitoring
  • CISO to Board communication frameworks
  • Crisis oversight: your role during an incident
  • Regulatory convergence: DORA / NIS2 / AI Act
Full-day masterclass · Series format available
All Sectors · All Levels
Bespoke Programme
Designed Around You

We design closed-cohort training programmes from the ground up — mapped to your sector, your regulatory obligations, your team's current maturity, and your timeline.

Any Level Any Sector Any Format
  • Pre-programme assessment and scoping
  • Content tailored to your sector and risk profile
  • In-person, virtual or hybrid delivery
  • Private facilitated tabletop exercises available
  • Ongoing advisory access options
  • CPD-aligned certification where required
Contact us to scope your programme
How We Deliver

Flexible Formats. Uncompromising Quality.

All programmes are delivered exclusively to your organisation. No shared cohorts, no off-the-shelf content.

🏛️

In-Person Delivery

On-site at your premises, boardroom, or a venue of your choice. Available across Ireland, the UK, EU, and internationally. Ideal for board-level sessions where confidentiality and focus are paramount.

💻

Virtual & Hybrid

Fully interactive virtual sessions for distributed leadership teams. Secure, private platforms with the same expert facilitation as in-person delivery — without the logistical overhead.

🗓️

Programme Series

Multi-session programmes delivered over weeks or months, building knowledge progressively. Includes interim check-ins and Q&A access between sessions.

How It Works

From Enquiry to Delivery

01

Initial Consultation

We discuss your organisation's regulatory landscape, team composition, and specific objectives.

02

Programme Design

Content, format, duration, and delivery method are tailored to your needs. An outline is provided for approval.

03

Delivery

Expert-led sessions delivered privately to your team, with facilitated discussion, case studies, and practical frameworks.

04

Post-Programme Support

Documentation, action frameworks, and optional follow-on advisory or further sessions available.

Why ICTTF & the EU Cyber Academy

Expert-Led. Practitioner-Built.

This is not off-the-shelf compliance training. It is delivered by people who work at the intersection of regulation, intelligence, and real-world cyber risk every day.

30+ Years of Practitioner Expertise

Led by Paul C Dwyer, globally recognised cybersecurity authority and author of Cyber Risk Leadership and The Art of Cyber Risk Oversight.

NATO & NCA Advisory Experience

Faculty with direct experience advising national and international security bodies — bringing real intelligence context to regulatory training.

ICTTF Global Network

Access to the International Cyber Threat Task Force's global intelligence and practitioner community, informing every programme with current threat context.

EU Regulatory Specialists

Deep expertise across DORA, NIS2, and the EU AI Act — including implementation experience, not just interpretation.

Board-Fluent Delivery

Content designed for how boards and executives actually make decisions — not how regulators write legislation.

Absolute Discretion

All engagements are conducted under strict confidentiality. Your organisation's risk profile stays private.

Ready to Brief Your Board?

Tell us your organisation's priorities and we will design the right programme for your team — confidentially and without obligation.

Enquire now on: +353-(0)1-905 3263
Email
info@icttf.org
Website
icttf.org
Academy
EU Cyber Academy
Based In
Dublin · Delivering Globally