CYBERSECURITY WORKFORCE

DEVELOPMENT TRAINING PROPOSAL

1. BACKGROUND

The presence of the state in order to protect its citizens and maintain the sovereignty of the state
especially in the cyber domain is by the formation of government organizations (bodies) responsible
for the national cyber and function of determining national cyber security policy with the role and
cooperation between government, private sector and society. Without forming a new body in
accordance with the spirit of Bureaucratic Reform, the duties, functions and authority of the cyber
body can be accommodated through the expansion of functions and authority of the State Code
Institute (Lemsaneg).

The President of the Republic of Indonesia, Joko Widodo, on May 19, 2017 has signed the Presidential
Regulation (Perpres) Number 53 of 2017 on the State Cyber and State Codes (BSSN). BSSN is a non-
ministerial government institution under and responsible to the President through ministers that
coordinate, synchronize and control the administration of the political, legal and security sectors.

BSSN is not a new institution established, but is a strengthening of existing institutions that previously
exist, namely Lemsaneg and Directorate of Information Security, Directorate General of Informatics
Applications, Ministry of Communications and Informatics. With the establishment of BSSN, the
implementation of all tasks and functions in the field of Coding and the implementation of all duties
and functions in the field of information security, security of telecommunication network based on
internet protocol, and network security and telecommunication infrastructure implemented by BSSN.

Cybersecurity refers to the technologies and techniques used to protect information and systems from
being stolen, compromised or attacked. This includes unauthorized or criminal use of electronic data,
attacks on networks and computers, and viruses and malicious codes. Cybersecurity is a national
priority and critical to the well-being of all organizations.

With this evolving threat to cyber security and protection, Multimatics and PINDAD are willing to
support and assist the cyber security personnel of BSSN to prepare them with the suitable and
updated skills in all aspects of cyber security.

Multimatics and PINDAD offers wide range of programs on IT Security in order to improve and
enhance the skills, and equip with the most comprehensive IT knowledge best practice towards a
sustainable development and empowerment of the government’s IT body by engaging the qualified
and certified human resources in IT Security. Develop a national IT Security Workforce Framework
that will empower your human resources.

Key Benefits of Training with Multimatics and PINDAD:

1. Global Best Practice: Multimatics training syllabus are based on years of professional experience
and standard of best practices such as CompTIA, ISACA, (ISC)2, PMI, Quint Wellington Redwood,
APMG International, AXELOS, Microsoft, and others, where:
• Multimatics is the only Authorized Training Partner of CompTIA in Indonesia to run the
CompTIA certification programs such as Network+, Security+, CASP, and many more.
 • Multimatics is an Authorized Partner of ISACA Indonesian Chapter to offer ISACA programs such
as CISA, CISM, CRISC, and others, which will be delivered by ISACA Indonesian Chapter member
Trainers, where Multimatics can run also the ISACA certification programs as we are now one
of the Authorized Testing Center of PSI.
• Multimatics is an Authorized Training Partner of Logical Operations from Malaysia.
• Multimatics is an Authorized Partner of TUV SUD Indonesia.
• Multimatics is an Authorized Partner of QSCert Indonesia.
• Multimatics is a partner of PMI Indonesian Chapter.
• Multimatics is an official Authorized Training Organization (ATO) – Affiliate of Quint Wellington
Redwood to deliver the ITIL® program, ISO/IEC 27001, Management of Risk (M_o_R®), and
PRINCE2 from AXELOS.
• Multimatics listed in APMG International as the Accredited Affiliate Partner of Quint Wellington
Redwood to offer the COBIT5 program.
• Multimatics is an Authorized Education Partner (AEP) of Microsoft.
• Multimatics is also partnering with Cisco, FORESEC, PASAS, FPSB Indonesia, Pentaho, Oracle,
VMWare, and Logicmills.
• Multimatics is an Authorized Testing Partner of Pearson Vue, Certiport, and PSI Online.

2. Proven Excellent Track Record: Multimatics has 14 years of experience in IT Training, Certification,
and Consulting specifically in IT Security. We also offer Training, Certification, and Consulting in
Business and Management, therefore participants will receive expert insights, valuable field tested
and applicable knowledge. Our participants’ testimonies are available for public view in various
social media, such as Facebook and YouTube.

3. Pool of Best Trainers: Multimatics utilizes teaching materials and class deliverable by Certified
Instructors, Practitioners, and Professionals specifically in cybersecurity.

4. Best Value: Reasonable pricing for best result.

5. Dynamic Program: Highly interactive classroom settings, allowing a fun and engaging two way
communication, understanding of training material, and ensuring maximum ability to absorb the
lessons.

6. Flexible and Responsive: Multimatics is proven to be highly responsive to meet all inquiries from
clients as part of its services.

7. Strategic Location: Strategically located at 37th floor at AXA Tower, Jakarta, with the best training
facilities.

8. Potential Long Term Partnership: Multimatics is a center for Professional Certifications, offering
not more than just IT and Cybersecurity Certification Program. In fact, Multimatics also provides a
comprehensive holistic approach to BSSN’s multidepartment training needs, from IT
Management, Corporate Financial Management, Soft Skills, Operational Management, and more.
2. VALUE PROPOSITION

Cybersecurity professionals have unique skills, are in short supply, and are vital to our nation’s
security. As a result, competition for talent is fierce and establishing a strong team is essential.
This requires organizations specifically the ICT Division of BSSN to tailor them with the suitable
skills in cybersecurity. Those who will commit to strengthening the workforce to help ensure
that we have skilled cybersecurity leaders.

This training proposal will strengthen the ICT Division of BSSN by preparing them with the
suitable and most updated skills in all aspects of cyber security through the building process:

Roles that make up a great cybersecurity team; cybersecurity talent profiles to help mapping
our manpower position cybersecurity staff. What skills and knowledge that they still need to
improve for us to provide and build a ready cybersecurity workforce team.

One way to ensure that we have the right cybersecurity team is to align to current national
standards. The National Cybersecurity Workforce Framework (Workforce Framework) is the
standard for defining your cybersecurity workforce. Align position descriptions, job duties,
and competencies to the Workforce Framework to operate successfully.

Table on the next page is the description of each of the work roles as described by the NICE
Framework. Each work role is identified by the Category and Specialty Area.

Multimatics offers the suitable training and certification programs that best suits in the role
according to the NICE Framework.
CYBER SECURITY TRAINING PROGRAMS OFFERED

NON-CERTIFICATION CERTIFICATION TRAINING

NO SCOPE DESCRIPTION
TRAINING PROGRAM PROGRAM
1 RECOVER Develop and implement the appropriate activities to Cyber Defense Responder CompTIA Advanced Security
maintain plans for resilience and to restore any Practitioner (CASP) / Certified
capabilities or services that were impaired due to Information System Security
cybersecurity event. Activities that help to recover the Professional (CISSP)
systems or infrastructure that were damaged and
return business operations to normal.
2 RESPOND Develop and implement the appropriate activities to Cyber Crime Investigator CyberSec First Responder (CFR)
take action regarding a detected cybersecurity event. / Disaster Recovery And Business
Activities that capture and contain the anomaly so it can Continuity (DRBC)
be analyzed and mitigated.
3 DETECT Develop and implement the appropriate activities to System Security Professional Cyber Security Analyst + (CSA+)/
identify the occurrence of a cybersecurity event. Certified Ethical Hacker (CEH)
Activities that identify a possible cyber threat or network
perimeter breach.
4 PROTECT Develop and implement the appropriate safeguards to Cyber Operation Planner Security + / COBIT 5
ensure delivery of critical infrastructure services.
Proactive safeguards to minimize the potential for a
perimeter penetration.
5 IDENTIFY Develop the organizational understanding to manage Vulnerability Analyst Cisco Certified Network Associate
cybersecurity risk to systems, assets, data and Security (CCNA)/ Certified Risk
capabilities. Understand the business and risk implication Management (CRM)
of cybersecurity breach.
6 BASIC Develop fundamental knowledge and skills in cyber Basic Cyber Security 1 Basic Cyber Security 2
CYBER security that will enable to detect, identify and respond
SECURITY the malicious activities involving data systems.
7 FOUNDATION Develop fundamental knowledge and skills in Computer Network Technology Computer Network Technology 2 (CNT
LEVEL networking technology developments, perform desktop 1 2)
computer assembly and troubleshooting. Understand
the fundamentals of electricity and electronics applied
to ICT as well as maintenance and troubleshooting.
 CYBER SECURITY WORKFORCE DEVELOPMENT PROGRAM TRAINING FEES

No. Training Program Duration Fee Remarks

Non - Certification
1 Computer Network Technology 1 5 days Rp 7.500.000,00 Multimatics/Logical Operations
2 Basic Cyber Security 1 5 days Rp 7.500.000,00 Multimatics/Logical Operations
3 Vulnerability Analyst 5 days Rp 7.500.000,00 Multimatics/Logical Operations
4 Cyber Operation Planner 5 days Rp 7.500.000,00 Multimatics/Logical Operations
5 System Security Professional 5 days Rp 7.500.000,00 Multimatics/Logical Operations
6 Cyber Crime Investigator 5 days Rp 7.500.000,00 Multimatics/Logical Operations
7 Cyber Defense Responder 5 days Rp 7.500.000,00 Multimatics/Logical Operations
Certification
1 Computer Network Technology 2 (CNT 2) 5 days Rp 10.000.000,00 Logical Operations
2 Basic Cyber Security 2 5 days Rp 10.000.000,00 Logical Operations
3 Cisco Certified Network Associate Security (CCNA) 5 days Rp 10.000.000,00 Cisco
4 Certified Risk Management (CRM) 5 days Rp 10.000.000,00 Quint Wellington Redwood
5 Security+ 5 days Rp 11.000.000,00 CompTIA
6 COBIT 5 5 days Rp 13.000.000,00 ISACA
7 Cyber Security Analyst+ (CSA+) 5 days Rp 10.000.000,00 CompTIA
8 Certified Ethical Hacker (CEH) 5 days Rp 15.000.000,00 EC - Council
9 CyberSec First Responder (CFR) 5 days Rp 12.500.000,00 Logical Operations
10 Disaster Recovery And Business Continuity (DRBC) 5 days Rp 15.000.000,00 EC - Council
11 CompTIA Advanced Security Practitioner (CASP) 5 days Rp 21.000.000,00 CompTIA
12 Certified Information System Security Professional (CISSP) 5 days Rp 18.500.000,00 Training
CONCLUSION

We thank you for this opportunity given to Multimatics for proposing this Cybersecurity Work Force
Development Training Program. We hope this proposal will meet all the requirements specifically the
ICT Division of National Cyber and Encryption Agency (BSSN) and tailor them to equip their
workforce with the suitable training programs.

Multimatics will strive to make your team more competent and gained knowledge and skills in
cybersecurity.

Thank you for giving as a chance to meet you and discuss this proposal in details.