· Lecture-1 Understand and Apply Concepts of Confidentiality, Integrity and Availability
· Information Security Fundamentals
· Interactive Exercise: Security Fundamentals
· Practical Exercise
· Lecture-2 Evaluate and Apply Security Governance Principles
· Frameworks, Benchmarks, and Guidelines
· Leadership Roles and Responsibilities
· Interactive Exercise: Governance Roles and Responsibilities
· Practical Exercise
· Lecture-3 Determine Compliance Requirements
· Regulatory and Contractual Obligations
· Privacy and Data Protection
· Practical Exercise
· Lecture-4 Understand Legal and Regulatory Issues That Pertain to Information Security in a Global Context
· Cybercrime and Data Breaches
· Licensing and Intellectual Property Law
· Practical Exercise
· Lecture-5 Understand, Adhere to and Promote Professional Ethics
· Organizational and Professional Ethics
· Practical Exercise
· Lecture-6 Develop, Document and Implement Security Policy, Standards, Procedures and Guidelines
· Information Security Policy
· Practical Exercise
· Lecture-7 Identify, Analyze, and Prioritize Business Continuity (BC) Requirements
· Business Continuity Planning
· Business Impact Analysis
· Interactive Exercise: Business Impact Analysis Metrics_From AR (LMS)
· Practical Exercise
· Lecture-8 Contribute to and Enforce Personnel Security Policies and Procedures
· Personnel Policies and Agreements
· Practical Exercise
· Lecture-9 Understand and Apply Risk Management Concepts
· Risk Management Concepts
· Risk Assessment
· Interactive Exercise: Quantitative Assessment
· Countermeasure Selection
· Interactive Exercise: Identifying Control Categories
· Practical Exercise
· Lecture-10 Understand and Apply Threat Modeling Concepts and Methodologies
· Threat Modeling
· Attack Vectors
· Exercise: Threats, Vulnerabilties and Exploits
· Practical Exercise
· Lecture-11 Apply Risk Management Concepts to the Supply Chain
· Supply Chain Risk Management
· Practical Exercise
· Lecture-12 Establish and Maintain a Security Awareness, Education, and Training Program
· ETA Principles and Practices
· Social Engineering Training
· Interactive Exercise: Social Engineering
· Practical Exercise