Information Risk Management

This is an intermediate level course covering topics on information assets, identifying risks, and management processes highlighting best principles and practices. It will provide training on information risk-related tools and technologies (such as asset evaluation, business impact analysis, risk identification, risk quantification, risk response, security policies, and compliance) for better understanding of potential threats and vulnerabilities in business online, and learning to adopt levels of security measures and best practices.

Course syllabus:

  1. Introduction to Information Security Risk Management

  2. Asset evaluation and Business Impact Analysis

  3. Risk identification

  4. Risk quantification

  5. Risk response development and control

  6. Security policy, compliance, and business continuity