Course Schedule

• Course Weekly Plan

Slides

• Enterprise Information Security - Core Concepts Part 1
• Enterprise Information Security - Core Concepts Part 2
• Enterprise Information Security - Core Concepts Part 3

Guest Talks

• November 2, 2023
• November 9, 2023

Case Studies

Case Study 1

• Case Study 1 - BIA and Security Risk Assessment
• Sample Business Impact Assessment template
• Sample Asset Based Risk Assessment template

Case Study 2

• Case Study 2 - Security Compliance Assessment
• Security Compliance Checklist - Remote Access

Additional Readings

• Definition of Cybersecurity
• NIST Cybersecurity Framework (NIST CSF)
• Payment Card Industry Data Security Standards (PCI-DSS)
• ISO-27001 (2022)
• Enterprise Information Security Policy
• Enterprise Information Security Standards and Guidelines
• Enterprise Acceptable Use Policy
• User Security Monitoring and Investigation Process
• ISO-27001 (2013)