• Classroom

This five day seminar is an introduction to the various technical and administrative aspects of Information Security and Assurance. This seminar provides the foundation for understanding the key issues associated with protecting information assets, determining the levels of protection and response to security incidents, and designing a consistent, reasonable information security system, with appropriate intrusion detection and reporting features. The purpose of the seminar is to provide the attendee with an overview of the field of Information Security and Assurance. Attendees will be exposed to the spectrum of security activities, methods, methodologies, and procedures. Coverage will include inspection and protection of information assets, detection of and reaction to threats to information assets, and examination of pre- and post-incident procedures, technical and managerial responses and an overview of the information security planning and staffing functions.

Learning Objectives

  • Understand what information security is and how it came to mean what it does today.
  • Comprehend the history of computer security and how it evolved into information security.
  • Understand the key terms and critical concepts of information security as presented in the chapter.
  • Outline the phases of the security systems development life cycle.
  • Understand the role professionals involved in information security in an organizational structure.
  • Identify and prioritize information assets.
  • Identify and prioritize threats to information assets.
  • Define an information security strategy and architecture.
  • Plan for and respond to intruders in an information system.
  • Describe legal, ethical and public relations implications of security and privacy issues.
  • Present a disaster recovery plan for recovery of information assets after an incident.

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Program/Project Management and Acquisition

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.