- lectures and labs
- 4 days
Fundamental to meeting these regulations, including the Gramm-Leach-Bliley Act (GLBA), the Health Insurance Portability and Accountability Act (HIPAA), the Federal Information Security Management Act (FISMA), and California SB 1386 are regularly scheduled risk assessments.
Risk assessments, as one component of an effective security program, help organizations protect private information by identifying critical assets, their threats and vulnerabilities to determine risk. From this analysis, organizations can develop security strategies that best minimize risk.
In this course, various frameworks and regulations that apply to IT risk assessments, are presented. Students learn a comprehensive risk assessment methodology as well as practical lessons. They will learn how to gather and analyze pertinent information via interviews, documentation review, and technical analysis. Students then learn to identify and prioritize risk, and recommend risk management strategies to meet information security program objectives. Risk assessment practice aids and lab exercises reinforce key concepts.