Managing Risk in Information Systems

Description

Managing Risk in Information Systems provides a unique, in-depth look at how to manage and reduce IT associated risks. Written by an industry expert, this book provides a comprehensive explanation of the SSCP® Risk, Response, and Recovery Domain in addition to providing a thorough overview of risk management and its implications on IT infrastructures and compliance. Using examples and exercises, this book incorporates hands-on activities to walk the reader through the fundamentals of risk management, strategies and approaches for mitigating risk, and the anatomy of how to create a plan that reduces risk.

Instructor's Material for Managing Risk in Information Systems include:

PowerPoint Lecture Slides

Instructor's Guide

Course Syllabus

Quiz & Exam Questions

Case Scenarios/Handouts

CONTENTS:

Part 1 Risk Management Business Challenges

  Chapter 1 Risk Management Fundamentals

  Chapter 2 Managing Risk: Threats, Vulnerabilities, and Exploits

  Chapter 3 Maintaining Compliance

  Chapter 4 Developing a Risk Management Plan

Part 2 Mitigating Risk

  Chapter 5 Defining Risk Assessment Approaches

  Chapter 6 Performing a Risk Assessment

  Chapter 7 Identifying Assets and Activities to Be Protected

  Chapter 8 Identifying and Analyzing Threats, Vulnerabilities, and Exploits

  Chapter 9 Identifying and Analyzing Risk Mitigation Security Controls

  Chapter 10 Planning Risk Mitigation Throughout the Organization

  Chapter 11 Turning Your Risk Assessment into a Risk Mitigation Plan

Part 3 Risk Mitigation Plans

  Chapter 12 Mitigating Risk with a Business Impact Analysis

  Chapter 13 Mitigating Risk with a Business Continuity Plan

  Chapter 14 Mitigating Risk with a Disaster Recovery Plan

  Chapter 15 Mitigating Risk with a Computer Incident Response Team Plan