Introduction to IS Governance (474)-Introduction to IS Governance
Intro
()
Governance Overview
()
Business Goals and Objectives
()
IS Governance (PDF Handout)
IS Roles and Responsibilities (475)-IS Roles and Responsibilities
Roles and Responsibilities
()
Risk Management and IS Roles and Responsibilities
()
Third-party Relationships
()
Information Security Strategy (478)-Information Security Strategy
Effective Metrics
()
Strategy Development
()
Strategy Goals, Objectives and Desired State
()
Current State of Security
()
Strategy Elements
()
IS Resources and Constraints (480)-IS Resources and Constraints
IS Resources
()
IS Constraints
()
Implementation Action Plan (484)-Implementation Action Plan
Implementation Action Plan Development
()
IS Program Objectives
()
Strategy and Implementation (488)-Strategy and Implementation
Risk Management Overview
()
Strategy, communication and risk awareness
()
Effective information risk management
()
Risk Management Concepts
()
Implementing Risk Management
()
Risk Assessment (494)-Risk Assessment
Risk Assessment Overview
()
Risk Assessment Methodology
()
Asset Classification and Operational Considerations (496)-Asset Classification and Operational Considerations
Asset Classification Overview
()
BIA Key Metrics
()
Third Party Service Providers
()
Integration with Life Cycle Processes
()
Security Control Baselines
()
Security Program Architecture (502)-Strategy and Implementation
IS Program Development and Management Overview
()
IS Program Elements
()
Defining IS Program Objectives
()
Technology Resources
()
Scope and Charter
()
IS Management Framework
()
IS Management Framework Components
()
Defining IS Program Road Map
()
IS Infrastructure and Architecture
()
Architecture Implementation
()
Security Program Activities (508)-Security Program Activities
Management and Administrative Activities
()
Services and Operational Activities
()
Effective Incident Management (512)-Incident Management Introduction
Incident Management Introduction
()
Incident Management Overview
()
Incident Response Procedures
()
Incident Management Organization
()
Incident Management Resources
()
Incident Management Objectives
()
Metrics and indicators
()
Defining Incident Management Procedures
()
IR, BC and DR Planning and Procedures (513)-IR, BC and DR Planning and Procedures
Current State of IR Capability
()
Developing an IR Plan
()
BC and DR Procedures
()
Testing IR, BC and DR Plans
()
Executing Response and Recovery Plans
()
Post-Incident Activities and Investigation
()
IR and BC Management
Risk Management (413)-Risk Management
Risk Definitions
()
Risk Frameworks
()
Risk Assessment
()
Threats and Threat Agents
()
Risk Assignment
()
Threat Modeling
()
Security Awareness
()
Due Diligence and Due Care
()
Vendor Security
()