Three hours lecture; 3 credits. This course will provide a basic background in the many aspects of security management associated with today's modern communications and networks. It includes the fundamentals of Risk Analysis, Risk Management, Security Policy, Security Operations, Legal issues, Business issues and Secure Systems Development.
Learning Objectives
- Understand the role of Security Management in information technology systems
- Quantify the properties of Information Security
- Develop project plans for secure complex systems with knowledge of SANS 20 critical controls
- Demonstrate understanding of the role of firewalls, guards, proxy servers and intrusion detection in networks on a Linux OS with traffic analysis
- Evaluate the residual risk of a protected network
- Provide forensics and other security management solutions in compliance with the policies and practices currently accepted in the industry as incident response.
- Apply legal and ethical standards in the Information Security context.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Risk Management
- Strategic Planning and Policy
- Systems Requirements Planning
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.