In this course students will learn the practical skills necessary to perform regular risk assessments for their organizations. The ability to perform risk management is crucial for organizations hoping to defend their systems. There are simply too many threats, too many potential vulnerabilities that could exist, and simply not enough resources to create an impregnable security infrastructure. Therefore every organization, whether they do so in an organized manner or not, will make priority decision on how best to defend their valuable data assets. Risk management should be the foundational tool used to facilitate thoughtful and purposeful defense strategies.
Lab 1 - Performing Risk Assessment
Lab 2 - Risk Assessment Case Study
Lab 3 - Formal Risk Assessment Tools
Lab 4 - Formal Risk Management Tools
Lab 5 - Log Parsing to Identify Risks
Lab 6 - Using a LiteGRC Risk Management Tool
Students will learn step by step how to perform a risk assessment.
Students will learn how to map an organization's business requirements to implemented security controls.
Students will learn the elements of risk assessment and the data necessary for performing an effective risk assessment.
Students will learn about what in depth risk management models exist for implementing a deeper risk management program in their organization.
WILL BE ABLE TO:
Perform a complete risk assessment
Inventory an organization's most critical information assets
Assign a data owner and custodian to an information asset
Assign classification values to critical information assets
Prioritize risk remediation efforts as a result of performing a risk assessment
Evaluate risk management models for use in their own organization