This course intends to make the student familiar with information security management. When you have finished with this course you will know more about:
• Governance: including the mission, roles and responsibilities of the InfoSec governance function, and the strategic planning process and InfoSec’s role in the organization’s strategic planning effort.
• You will understand the various types of InfoSec policies and how effective information security policy is created and used.
• Risk management and the risk management process
• Certain laws and ethical issues impacting information security in the organization. And some common information security management practices such as benchmarking and performance measures.
Ce cours fait partie de la Spécialisation Cybersecurity: Developing a Program for Your Business
The Business of Cybersecurity Capstone
proposé par
Programme du cours : ce que vous apprendrez dans ce cours
Semaine
1Welcome to the Management of Information Security
This module provides a welcome to the course and describes the course modules that follow. The lecture and reading will introduce you to the broad topic of security management and establish the basic terminology needed for later modules. Also, you will begin learning about the case company that you will use in an extended simulation that spans the rest of this course as you build on your learning by engaging in real world analysis and reporting on cybersecurity topics.
2 vidéos (Total 8 min), 2 lectures, 2 quiz
2 lectures
What is security management?20 min
Capstone Project: Getting started10 min
1 exercice pour s'entraîner
Pretest: Test your knowledge before you begin10 min
Semaine
2Governance and Strategic Planning in Information Security
In this module, you will explore how organizations organize the cybersecurity function and engage in strategic planning. This will include coverage of where the information security management team is placed in the organizational hierarchy, what functions does the CSO of an organization fulfill, as well as some explanation of the strategic planning function.You will also develop a simulated organizational plan in a report to executive management as part of the ongoing case study.
2 vidéos (Total 8 min), 4 lectures, 3 quiz
4 lectures
How organizations structure the security function25 min
What does the CSO do?20 min
How organizations make strategic plans for security20 min
Capstone Project: Organizing for cybersecurity10 min
2 exercices pour s'entraîner
Governance and strategic planning in information security practice quiz10 min
Governance and strategic planning in information security quiz10 min
Semaine
3Risk Management
This module will define risk management and explore the processes used by organizations to identify and control risk. This will include basic techniques used to identify and assess risk as well as exploration of the risk control strategies that can be used to help control risk. You will also experiment with reading an industry standard risk report that you will summarize and analyze as you assess operational risk for higher management as part of the ongoing case-based project.
3 vidéos (Total 11 min), 5 lectures, 3 quiz
3 vidéos
The risk assessment process4 min
Executive viewpoint on risk management methodology2 min
5 lectures
An overview of the risk management process15 min
More on identifying and assessing risk15 min
Determining risk control strategies15 min
Methods used to implement risk management10 min
Capstone Project: Identifying risks15 min
2 exercices pour s'entraîner
Risk management practice quiz10 min
Risk management quiz10 min
Semaine
4Regulatory Compliance, Law and Ethics
In this module you will learn about how organizations must manage the complex issues emerging from the rapidly changing legal and regulatory environment. It will include a short overview of the laws and regulations you should plan to learn about as well as an introduction to how ethics is encountered in the workplace. Then you will engage on a discussion on compliance with industry standards and governmental regulation as a means to move closer to a more secure work environment. As part of the ongoing case study you will be asked to advise management on an ethical dilemma currently facing some of the management team at CHI.
2 vidéos (Total 10 min), 4 lectures, 3 quiz
2 vidéos
Executives viewpoint on implementing compliance programs4 min
4 lectures
The legal landscape of cybersecurity20 min
Workplace ethics20 min
Common processes in cybersecurity programs20 min
Capstone Project: Ethical decision making5 min
2 exercices pour s'entraîner
Regulations, law, ethics, and compliance practice quiz10 min
Regulations, law, ethics, and compliance10 min
4.8
11 avis17%
a bénéficié d'un avantage concret dans sa carrière grâce à ce cours
Meilleurs avis
par MT•Sep 25th 2017
Great course. Provides a great hands on insight and experience with Cybersecurity
par C•Mar 10th 2017
Great course that provides good insights into the world of CyberSecurity!
Enseignants
Dr. Humayun Zafar
Associate Professor of Information Security and AssuranceInformation Systems
Dr. Traci Carte
Associate Professor Chair, Information SystemsInformation Systems
Herbert J. Mattord, Ph.D., CISM, CISSP, CDP
Associate Professor in Information Security and AssuranceInformation Systems
Mr. Andy Green
Lecturer of Information Security and AssuranceKennesaw State University - Department of Information Systems
Michael Whitman, Ph.D., CISM, CISSP
Professor of Information SecurityInformation Systems
À propos de University System of Georgia
The University System of Georgia is composed of 28 higher education institutions including 4 research universities, 2 regional universities, 12 state universities, 13 state colleges and the Skidaway Institute of Oceanography. The Georgia Public Library System, encompassing 61 library systems throughout Georgia, is also part of the University System.
À propos de la Spécialisation Cybersecurity: Developing a Program for Your Business
Cybersecurity is an essential business skill for the evolving workplace. For-profit companies, government agencies, and not-for-profit organizations all need technologically proficient, business-savvy information technology security professionals. In this Specialization, you will learn about a variety of processes for protecting business assets through policy, education and training, and technology best practices. You’ll develop an awareness of the risks and cyber threats or attacks associated with modern information usage, and explore key technical and managerial topics required for a balanced approach to information protection. Topics will include mobility, the Internet of Things, the human factor, governance and management practices.
Foire Aux Questions
Quand aurai-je accès aux vidéos de cours et aux devoirs ?
Une fois que vous êtes inscrit(e) pour un Certificat, vous pouvez accéder à toutes les vidéos de cours, et à tous les quiz et exercices de programmation (le cas échéant). Vous pouvez soumettre des devoirs à examiner par vos pairs et en examiner vous-même uniquement après le début de votre session. Si vous préférez explorer le cours sans l'acheter, vous ne serez peut-être pas en mesure d'accéder à certains devoirs.
À quoi ai-je droit si je m'abonne à cette Spécialisation ?
Lorsque vous vous inscrivez au cours, vous bénéficiez d'un accès à tous les cours de la Spécialisation, et vous obtenez un Certificat lorsque vous avez réussi. Votre Certificat électronique est alors ajouté à votre page Accomplissements. À partir de cette page, vous pouvez imprimer votre Certificat ou l'ajouter à votre profil LinkedIn. Si vous souhaitez seulement lire et visualiser le contenu du cours, vous pouvez accéder gratuitement au cours en tant qu'auditeur libre.
Quelle est la politique de remboursement ?
Une aide financière est-elle possible ?
D'autres questions ? Visitez le Centre d'Aide pour les Etudiants.
Coursera propose un accès universel à la meilleure formation au monde,
en partenariat avec des universités et des organisations du plus haut niveau, pour proposer des cours en ligne.
© 2019 Coursera Inc. Tous droits réservés.
