The Managing Risk in Information Systems training course provides a unique, in-depth look at how to manage and reduce IT-associated risks. You will learn about the Systems Security Certified Practitioner (SSCP) risk, response, and recovery domain in addition to risk management and its implications on IT infrastructures and compliance. Using examples and exercises, this course incorporates hands-on activities related to fundamentals of risk management, strategies, and approaches for mitigating risk. You will also learn to create a plan that reduces risk.
By attending Managing Risk in Information Systems workshop, delegates will learn:
- Basic concepts of and need for risk management
- Compliancy laws, standards, best practices, and policies of risk management
- Components of an effective organizational risk management program
- Techniques for identifying relevant threats, vulnerabilities, and exploits
- Risk mitigation security controls
- Concepts for implementing risk mitigation throughout an organization
- Perform a business impact analysis for a provided scenario
- Create a business continuity plan (BCP) based on the findings of a given risk assessment for an organization
- Create a disaster recovery plan (DRP) based on the findings of a given risk assessment for an organization
- Create a computer incident response team (CIRT) plan for an organization in a given scenario
General knowledge of networking and management information systems.
This Managing Risk in Information Systems class is intended for:
- Information security analysts
- Payroll specialists
- IT infrastructure security specialists
- People who decide which information technology and cyber security products to acquire for their organization