| Content |
- Understand your executive security challenges, obligations, and accountability. Learn how to better utilize an information security steering committee to achieve convergence of information security policies and management throughout the organization. Understand key cross-functional information security roles and responsibilities for department heads, business process owners, and information security steering committee members.
- Learn how the organization can use a risk based approach to internal controls management to reduce costs and optimize protection and compliance.
- Learn how your organization can systematically identify your risks and vulnerabilities. Learn how your organization can implement best-practice processes for access, acceptable use, training, strategy, and emergency response. Learn how your organization can establish and monitor security internal security controls according to respected international frameworks and standards such as:
- Learn effective executive leadership, governance, and metrics. Staffing security – Learn how to cope with a shortage of expertise.
- Threat Mitigation
- The importance of authentication and encryption
- Types of authentication and encryption systems used
- Introduction to social engineering (refresher and in an IT context)
External Threats - Direct threats
- Social engineering attacks (attacking systems through staff and what staff do)
- Hackers, crackers, script kiddies and links to organised crime
External Threats – Indirect threats
- Threats to customers
Social engineering, Scams, phishing emails, keylogging, browser hijacking (What to watch for and ways to assist those who have been affected)
- Mitigation against external threats (what IT will be doing, how you can help)
- Case study of an external threat
|
