Introducing our author of the month for February: Toomas Viira

Our author of the month series brings you exclusive features, interviews and blog posts from our authors, along with discounts on their ITGP publications.

Our author of the month for February is Toomas Viira.

Toomas is the author of Lessons Learned: Critical Information Infrastructure Protection – How to protect critical information infrastructure.

Toomas Viira

Toomas Viira


Toomas is a cyber security risk manager and IT auditor who has more than 20 years’ experience in the IT and cyber security sectors.

He is the IT audit manager for the National Audit Office of Estonia. His previous roles include head of the Critical Information Infrastructure Protection Department at the Estonian Information Systems Authority, information security manager at the Estonian Informatics Centre, and data communication and IT security division manager at the Estonian Ministry of Foreign Affairs.

Toomas has managed several national-level critical information infrastructure projects, and in 2007 he was part of the team that protected Estonia from large-scale cyber attacks. He is also one of the main authors of the first Estonian Cyber Security Strategy.

He has an MBA from the Estonian Business School and achieved his bachelor’s degree in telecommunications engineering from Tallinn University of Technology. He also holds CISSP®, CISA®, CISM®, CRISC™, ISO 27001 CIS LI and ITIL® Foundation certifications.

Lessons Learned disount banner

Lessons Learned: Critical Information Infrastructure Protection – How to protect critical information infrastructure

This concise guide explains how to protect your critical information infrastructure, whether you work for a critical infrastructure service provider, a company that organises the provision of critical infrastructure services, or a company that serves critical service providers. Key takeaways include how to:

  • Describe the critical infrastructure service and determine its service level;
  • Identify and analyse the interconnections and dependencies of information systems;
  • Create a functioning organisation to protect critical information infrastructure; and
  • Train people to make sure they are aware of cyber threats and know the correct behaviour.

Find out more

Save 20% when you order Lessons Learned: Critical Information Infrastructure Protection by 28 February 2019. Enter code Viira20 at the checkout.