This five day seminar is an introduction to the various technical and administrative aspects of Information Security and Assurance. This seminar provides the foundation for understanding the key issues associated with protecting information assets, determining the levels of protection and response to security incidents, and designing a consistent, reasonable information security system, with appropriate intrusion detection and reporting features. The purpose of the seminar is to provide the attendee with an overview of the field of Information Security and Assurance. Attendees will be exposed to the spectrum of security activities, methods, methodologies, and procedures. Coverage will include inspection and protection of information assets, detection of and reaction to threats to information assets, and examination of pre- and post-incident procedures, technical and managerial responses and an overview of the information security planning and staffing functions.
- Understand what information security is and how it came to mean what it does today.
- Comprehend the history of computer security and how it evolved into information security.
- Understand the key terms and critical concepts of information security as presented in the chapter.
- Outline the phases of the security systems development life cycle.
- Understand the role professionals involved in information security in an organizational structure.
- Identify and prioritize information assets.
- Identify and prioritize threats to information assets.
- Define an information security strategy and architecture.
- Plan for and respond to intruders in an information system.
- Describe legal, ethical and public relations implications of security and privacy issues.
- Present a disaster recovery plan for recovery of information assets after an incident.