This course provides the foundation for understanding the key issues associated with protecting information assets, determining the levels of protection and response to security incidents, and designing a consistent, reasonable information security system, with appropriate intrusion detection and reporting features. Coverage will include inspection and protection of information assets, detection of and reaction to threats to information assets, and examination of pre- and post-incident procedures, technical and managerial responses, and an overview of the information security planning and staffing functions.
Learning Objectives
- Explain the fundamental concepts of information security including the principles, definitions and architecture
- Recognize the need to integrate information security with the business architecture
- Describe and evaluate methodologies used to identify risks, vulnerabilities, and threats in organizations’ processes and how to mitigate their impact
- Describe the layers of the security architecture and evaluate technologies that can be implemented to secure each layer
- Construct security audits, penetration testing, continuity of operations planning and disaster recovery
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Program/Project Management and Acquisition
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.