PrintEmail

Information Security Management (Advanced)

Last Revised:
10. May 2017
Code:
ISMA
Price:
1800.00 USD (VAT incl.)
Location:
Not Specified
Group:
Not Specified
Level:
Not Specified

Description

Information Security Management (Advanced)

This session will provide detailed workshop discussion and case studies on key information security areas. We will focus on practical development and implementation of processes to manage governance, risk and compliance areas relating to information security within the enterprise.

Learning Objectives:

  • Understand key information security governance requirements and practices
  • Understand information security risks and processes to identify and manage risk within the organization
  • Understand key risk mitigation strategies for current and emerging information security issues
  • Develop and implementation key areas of an organizations information security program to mitigate risks to acceptable levels

Prerequisites: Successful completion of Information Security Management. Knowledge and understanding of information security architecture and technology. Previous managerial experience is helpful but not required.

Target Audience:

  • Information security practitioners
  • Information security consultants
  • Information security managers
  • Security professionals, including those aspiring to attain the CISM designation 

 Session Outline: 

This session will provide detailed workshop discussion and case studies on key information security areas. We will focus on practical development and implementation of processes to manage governance, risk and compliance areas relating to information security within the enterprise

 

Learning Objectives:

 

 

·         Understand key information security governance requirements and practices

 

·         Understand information security risks and processes to identify and manage risk within the organization

 

·         Understand key risk mitigation strategies for current and emerging information security issues

 

·         Develop and implementation key areas of an organizations information security program to mitigate risks to acceptable levels 

 

Course Outline:

 

 

Information Security Governance

 

·         Information Security Management Framework

 

·         Information Security Frameworks and Standards (e.g. ISO27001/27002)

 

·         Security Organization Components

 

·         Information Security Policy and Standards

 

·         Compliance Processes and Procedures 

 

Information Security Management

 

·         Performing Information Security Risk Assessments

 

·         Dealing with emerging Security Issues (Cloud, BYOD, Mobile Devices)

 

·         Security Architecture and Design

 

·         Key Security Control Processes including Security Configuration; Vulnerability Assessment and Host-Based Compliance areas 

 

Information Security Areas

 

·         Asset Classification and Control

 

·         Personnel Security

 

·         Physical and Environment Security

 

·         Operational Security

 

·         Logical Access Control

 

·         Network Security

 

·         Information Security Threats and Vulnerabilities

 

·         Information Security Awareness

 

·         Incident Response and Incident Handling

 

·         Operating System Security (Focus on Windows, Unix and Linux)

 

·         Database Security

 

·         Virtualization Security

 

·         Virus and Malicious Code Management

 

·         E-mail, Messaging and Mobile Security

 

·         Secure System Development and Maintenance

 

·         Application System Security (including web application security)

 

·         Disaster Recover and Business Continuity Planning

 

·         Vendor Management including Service Providers and Cloud Services

 

 

Supplemental Participant Materials:

 

 

Information Security Resources:

 

·         Security References

 

·         Web Sites / Twitter Feeds

 

·         Mailing Lists/Advisories

 

TERMS &CONDITIONS

 

This is a binding contract, please read and understand the terms and conditions before signing as signed booking forms will not be cancelled 10 days after SAVANNAH TELECOM Management has received the registration form.

 

1.  Terms of payment:

 

In order to secure your registration, payment is due in full upon receipt of invoice. Early registration is vital due to limited workshop space.

 

2.  Right of Admission:

 

SAVANNAH TELECOM reserves the right to refuse admission to the conference where evidence of full payment cannot be shown.

 

3.  Delegate Cancellation:

 

Provided the total fee has been settled, substitutions will be at no extra charge up till 7 days before the workshop date. Cancellations must be received in writing (14) days before the workshop in order to obtain a full credit voucher for our future events. Any cancellations received less than 14 days before the date of the conference, the full fee will be payable and no refunds or credit voucher will be given. If a delegate does not cancel and fails to attend the conference, he/she is liable for the full payment and no refund / credit voucher will be issued

 

4. SAVANNAH TELECOM Substitutions:

 

Please note that speakers and topics were confirmed at the time of publishing, however, circumstances beyond the control of the organizers may necessitate substitutions, alterations or cancellations of the speakers and/or topics. As such SAVANNAH TELECOM reserves the right to alter /modify the advertised speakers/ topics if necessary and all delegates will be notified as soon as possible.

 

5.SAVANNAH TELECOM Cancellation & Postponement:

 

In the event that SAVANNAH TELECOM Business Consulting cancels an event, delegate payments at the date of cancellation will be credited to a future SAVANNAH TELECOM conference. This credit will be available for a year from the date of issue. If the delegate is unable to attend the rescheduled conference, the delegate will receive a credit representing payments made towards a future SAVANNAH TELECOM conference & it will be available for 1 year from the date of issue. SAVANNAH TELECOM is not responsible for any loss/damage as a result of a substitution, alteration/cancellation /postponement of a conference

 

 

 


Subscribe to our list!

There are no scheduled dates for this course.
If you are interested in this course, you can subscribe to our list. You will be notified as soon as the course is scheduled.

Attendee Information

Trainee

* required