Resilient. Secure. Compliant. NERC CIP and ICS/OT Security. We keep you ahead of your adversaries - and your auditors.

Cyber Compliance Foundations

ChatGPT Image Jul 8, 2025, 12_18_54 PM.png

Enhance Your Compliance Expertise

 
 

Gain the tools to fortify your security posture and address new regulations with Ampyx Cyber’s Cyber Compliance Foundations course. Built to serve both beginners and experienced professionals—management and technical—in industrial control systems security and IT cybersecurity, this 1.5-day course offers practical strategies for reinforcing your cybersecurity resilience and ensuring successful compliance efforts. Pave your way to a more robust cybersecurity infrastructure and acquire certification valid for 12 hours of CPE (Continuing Professional Education) credit.

 

Why Choose Our Course for Cyber Compliance Foundations?

SPECIALIST-LED MASTERCLASS

Learn from industry professionals with real-world experience in establishing and revamping cybersecurity compliance programs. Our instructors provide actionable strategies for tackling multifaceted compliance challenges. This course is designed and led by Terri Khalil, an expert in cybersecurity and compliance with over 35 years of experience, encompassing an array of NERC-CIP, TSA Pipeline, SOX, and internal audits.

IN-DEPTH COURSE MATERIAL

Our course covers all the elements that make up successful cybersecurity compliance programs, guiding you through the essential steps and potential challenges you might face. Curated to address the problems faced within the context of industrial control systems and IT systems, we will explore the potential impact of regulations, as well as strategies for utilizing those regulations and/or a standards-based framework as a foundation for enhancing security and resilience.

  • Regulatory and Compliance Landscape

  • Engaging Key Stakeholders and Accountability

  • Organizational Change Management, Learning, and Culture Change

  • Standards Interpretation

  • High-level Project Activities such as Design Workshops

  • Foundational Compliance Activities

  • Operationalization and Validation

  • Non-compliance Process Planning

  • Audience-based Reporting & Measurement

  • Funding & Buy-in

NETWORK EXPANSION

Create connections with fellow industry professionals you can learn from and share your insights with. This course is an opportunity to not only gain knowledge and expertise, but also to build meaningful relationships with colleagues in your field.

CPE CREDITS

All participants who attend the full class will receive a Certificate of Completion valid for 12 hours of CPE credit.

Who Should Attend

This course is ideal for:

  • Compliance, regulatory and cybersecurity professionals seeking to enhance their expertise.

  • Anyone working in an industry with IT and/or OT cybersecurity regulations (NERC CIP, TSA, DFARS Cybersecurity) and/or auditable cybersecurity requirements (e.g., NIST Cybersecurity Framework).

  • IT and OT security practitioners focusing on safeguarding critical infrastructure.

  • Anyone aspiring to build a career in the Governance, Risk, and Compliance space.

About the Class          

Details about the class location, equipment, duration, timing, and format:

  • Your laptop or tablet is optional, can be work or personal, no software will be installed

  • Format is classroom style

  • Class in person only, Location TBD

  • Classes will run from 8:30am-5:00pm on Day 1 and 8:30am-12:00pm on Day 2

  • Breakfast and lunch are provided each day of the class

    • Breakfast begins at 8:00am and class starts at 8:30am

    • Lunch usually begins around 12:00pm/noon and runs for an hour

    • Please let us know about any allergies/intolerances

  • Multiple breaks throughout the day

  • Internet will be provided during class

  • Certificate of completion valid for 12 hours of CPE credit will be provided for attendees who attend the full class

 
 

About your instructor

Terri Khalil is a cybersecurity and compliance professional with 35 years’ experience in cybersecurity, risk and compliance disciplines as well as Office of the CIO functions, with 15 of those years in the regulated energy industry with significant focus on NERC CIP and other frameworks (TSA Pipeline Security, DFARS Cybersecurity, SOX, PCI, and NIST) for regulatory obligation management, audit readiness, non-compliance investigations and reporting.

As a consultant, Terri performs cybersecurity risk assessments and technical architecture reviews, roadmap development, CIP Program assessments and improvements, internal controls assessment and development, and resource/workforce assessments. As an IT Director at an energy utility, Terri led IT Compliance, IT Project & Program Management Office, IT Asset & Vendor Management, IT Benchmarking & Metrics, Security Awareness, IT strategy and budget planning, and workforce planning & acquisition. Terri’s 18 years with PwC included Information Security & Risk roles, where she performed risk assessments, global policy and standards development, access management, lab management, access provisioning automation, change management, and security awareness.

Terri holds an MBA and a BS in MIS from University of South Florida, as well as current CISSP, CISA, CISM, and CRISC certifications. She is constantly seeking new knowledge and enjoys mentoring as well as sharing knowledge. Terri also conducts workshops on “Establishing a Cybersecurity Compliance Program” and speaks on various topics at conferences.