Information Security Management in a Nutshell

Information Security Management is the new discipline in organizational management. It has been mandated for critical infrastructures by several laws, and has become the de-facto standard for information protection in organizations of any type. It is the “quality assurance” of the digital era. The objective of this course is to help business decision-makers understand the steps that need to be taken to secure information in their organization. After taking this course, learners will recognize the processes that need to be considered when implementing and using an Information Security Management System, and understand the legal requirements of such a system and how these can be implemented appropriately within an organization. The course gives guidelines on how to protect information with technical and organizational security controls.

Unit 1 - Information Security Goals
Unit 2 - Security Risk Management
Unit 3 - Security Control Types
Unit 4 - Security Management Processes: Prevention, Detection, Response
Unit 5 - Security Awareness
Unit 6 - Organizational Requirements
Unit 7 - Legal Conditions for Certifying Security Management Systems
Unit 8 - Key Takeaways