Format

Classroom

Duration

3.0 Day(s)

Description

This course surveys threats to the security of information systems and teaches students a cyclical process for countering these threats using a widely used classification of security services and a broadly applicable security architecture. Class activities include analysis of a
number of security-related scenarios.

Audience

1. Information technology managers and other IT policy managers

2. System administrators and other technical personnel

Prerequisites

Prerequisites for this course are minimal. Students should have a general knowledge of information technology and some knowledge of an operating system.

Objectives

Upon completion of this course, students should be able to:

• List and describe components of security (security services) using one or two widely used classifications or models

• List and describe some of the most important threats to the security of information systems

• Describe a model for security architecture
• Develop and review a security policy
• Use a cyclical process for security management
• Explain several important security concepts
• List key host, intranet, and Internet security facilities
• Identify methods for monitoring system security and reporting or responding to breaches of security

• Plan education of technical staff responsible for implementing security of systems

• Develop guidelines for user and group administration on systems
• Explain important legal considerations in developing,

implementing, and reviewing security policy

Contents

Components of security

• Threats to security
• Security management
• Security services
• Design of a security implementation plan
• Legal considerations

Curriculum relationship

• AM40 (this course)
• Technical courses in security curriculum for particular platform