Security Management and Governance
Royal Holloway, University of London via Coursera
-
165
-
- Write review
Overview
In this course you will look at some of the key components of practical cyber security management and its governance. This includes what happens when things go wrong, understanding how organisations can respond to incidents, through to the essential role of people in achieving better cyber security outcomes. Together, you will examine how incident management, cyber resilience, and developing an effective appreciation of people, not simply as users but as active participants, can enable better cyber security outcomes.
The topics covered include:
• Identifying what an incident is
• Incident preparation, planning, and response
• Cyber resilience
• The role of people in security management
• The building of trust and developing positive cyber security cultures
By completing this course, you will learn how to integrate incident management and a rich knowledge of people into a real-world Information Security Management System for an organisation.
Syllabus
- Introduction to Security Management and Governance
- In the first week, we will obtain an overview of the course and, in particular, get an overview how security management can be used to address and respond to security incidents through a range of techniques. This includes engaging with ISO/IEC 27035 to develop a pragmatic response to risk management.
- Dealing with Incidents
- This week you will learn how to identify and prioritise incidents, their planning and preparation, responding to incidents as well as learning and assessing from (inevitable) incidents that organisations encounter.
- People and cyber security
- This week is concerned about the integration of different people and communities into security management.
- A Trusting Ecosystem
- In this week you will learn about a range of components ranging from trust to security awareness training to demonstrate why the management of people is a core element to a successful information security management system. The week concludes by asking what people-centric security might enable for an organisation and how such a change of perspective can be beneficial to security management.
Taught by
Andrew Dwyer