Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS 490/CIS 790 Information System Security

Published byElias Molenaar Modified over 5 years ago

Similar presentations

Presentation on theme: "CS 490/CIS 790 Information System Security"— Presentation transcript:

1 CS 490/CIS 790 Information System Security
Welcome to the Course! Taught By: Dr Susan Lincke (CISA)

2 Security Certifications
Managerial Certified Information Security Mgr (CISM) Security Architect, Security Mgr, Security Consultant High-Level Oriented Certified Information Systems Auditor (CISA) IT Auditor High-Level & Detail Oriented Focus: Audit, Compliance Certified Information Systems Security Professional (CISSP) Auditor, Security Consultant, Security Mgr, Security Architect Detail-Oriented Technical Secure+ Security Administrator

3 Certification Overlap
CISA CISM Audit Security Program Mgmt Software Engineering Systems Life Cycle Mgmt IT Governance Network Security CISSP Data Com- munications & Networks Security Program Info Security Development Risk Physical Control Incident Response & Business Continuity & Disaster Recovery Operations Security Telecommunications Forensics Security Architecture Legal Regulations Cryptography

4 Course Material CISA Audit Security CISM Program
Mgmt Software Engineering Systems Life Cycle Mgmt IT Governance Network Security CISSP Data Com- munications & Networks Security Program Info Security Development Risk Physical Control Incident Response & Business Continuity & Disaster Recovery Operations Security Telecommunications Forensics Security Architecture Legal Regulations Cryptography

5 Information Security Careers
Development: Design requirements Develop applications Database Administration Security software dev. IT Auditor, Quality Assurance, Forensics Legal compliance Security recommendations Audit Forensics IT & Security Administration Protect the network Implement access control Monitor IPS/Firewall Risk Analysis Security Architecture Security Program Management

6 Control Layers

7 Course Work Lab Community Partner Lecture Case Study Presentation:
PowerPoint Apply in experience Health First Requirements & Design Work Book guide

8 Health First Case Study

9 Health First Case Study
Jamie Ramon MD Doctor Chris Ramon RD Dietician Terry Medical Admin Pat Software Consultant Health First Case Study

10 Service Learning Component: Non-Disclosure Agreement
Wrong Way: You: I developed a security plan for Help-The-Community Interviewer: What specifically did you do? You: I helped them to define their data security classification schemes and recommended they encrypt their back-up tapes daily, among other things. Interviewer: What did you find? You: They had no security. They were hopelessly non-technical. We introduced some security, including adding WPA to their wireless network. What is wrong with this dialogue?

11 Service Learning Component: Non-Disclosure Agreement
Right Way: You: I developed a security plan for Help-The-Community Interviewer: What specifically did you do? You: Well, we worked with information security and network security using the Small Business Security Workbook. But I can’t go into more details. Interviewer: What did you find? You: I signed a non-disclosure agreement. But I can tell you more about the Health First Case Study we worked on…

12 How to Study Do the work in class
Use the test questions (CD) in the presentations and the book for chapters covered “Think like ISACA or ISC does” General vocabulary and concepts at end of presentation

Download ppt "CS 490/CIS 790 Information System Security"

Similar presentations

WHAT DOES IT MEAN TO YOU? Information Technology.

WHAT DOES IT MEAN TO YOU? Information Technology.
IT Web Application Audit Principles Presented by: James Ritchie, CISA, CISSP….

IT Web Application Audit Principles Presented by: James Ritchie, CISA, CISSP….
The Influence of Internal Audit on Information Security Effectiveness October 5, 2013 Perceptions of Internal Auditors Graham Gal With Paul Steinbart,

The Influence of Internal Audit on Information Security Effectiveness October 5, 2013 Perceptions of Internal Auditors Graham Gal With Paul Steinbart,
Security and Personnel

Security and Personnel
StanSource Inc. is Information Technology services and solutions providing organization engaged in providing a full range of solutions and services to.

StanSource Inc. is Information Technology services and solutions providing organization engaged in providing a full range of solutions and services to.
INFORMATION SECURITY MANAGEMENT L ECTURE 10: P ERSONNEL & S ECURITY You got to be careful if you don’t know where you’re going, because you might not get.

INFORMATION SECURITY MANAGEMENT L ECTURE 10: P ERSONNEL & S ECURITY You got to be careful if you don’t know where you’re going, because you might not get.
Information Assurance & Network Security Certificate Prof. Rafael M. Rivera Universidad del Turabo School of Engineering Institute of Telecommunications.

Information Assurance & Network Security Certificate Prof. Rafael M. Rivera Universidad del Turabo School of Engineering Institute of Telecommunications.
OPM Cybersecurity Competencies by Occupation (Technical Competencies) 2210085508540391 Information Technology Management Series Electronics Engineering.

OPM Cybersecurity Competencies by Occupation (Technical Competencies) Information Technology Management Series Electronics Engineering.
Practice for the CISSP Exam Steve Santy, MBA, CISSP IT Security Project Manager IT Networks and Security.

Practice for the CISSP Exam Steve Santy, MBA, CISSP IT Security Project Manager IT Networks and Security.
IS 380 OME 1 Fall 2010 Class 1. Administrative Roster Syllabus Review Class overview 10 domains overview.

IS 380 OME 1 Fall 2010 Class 1. Administrative Roster Syllabus Review Class overview 10 domains overview.
Security Certification

Security Certification
Introduction to BC Management, Inc. Founded in March 2000. Headquartered in Irvine, CA. An executive search firm exclusively placing business continuity,

Introduction to BC Management, Inc. Founded in March Headquartered in Irvine, CA. An executive search firm exclusively placing business continuity,
Certified Information System Security Professional (CISSP)

Certified Information System Security Professional (CISSP)
Certification and Training Presented by Sam Jeyandran.

Certification and Training Presented by Sam Jeyandran.
Chapter Nine Conducting the IT Audit. Audit Standards AICPA — Statements of Auditing Standards (SASs) AICPA — Statements of Auditing Standards (SASs)

Chapter Nine Conducting the IT Audit. Audit Standards AICPA — Statements of Auditing Standards (SASs) AICPA — Statements of Auditing Standards (SASs)
Introduction to IT Auditing

Introduction to IT Auditing
 An Overview of IE 4382/5382 Cybersecurity for Information Systems Susan D. Urban, Ph.D Department of Industrial Engineering Texas Tech University Lubbock,

 An Overview of IE 4382/5382 Cybersecurity for Information Systems Susan D. Urban, Ph.D Department of Industrial Engineering Texas Tech University Lubbock,
Management Information Systems (CSC373) 3(3,0) Introduction to the Course.

Management Information Systems (CSC373) 3(3,0) Introduction to the Course.
© 2007 ISACA ® All Rights Reserved DAMA-NCR Chapter Meeting March 11, 2008.

© 2007 ISACA ® All Rights Reserved DAMA-NCR Chapter Meeting March 11, 2008.
Auditing for Security Management By Cyril Onwubiko Network Security Analyst at COLT Telecom Invited Guest Lecture delivered at London Metropolitan University,

Auditing for Security Management By Cyril Onwubiko Network Security Analyst at COLT Telecom Invited Guest Lecture delivered at London Metropolitan University,

Similar presentations

Ads by Google