SluitenHelpPrint
Switch to English
Cursus: 201500018
201500018
Cybersecurity Management
Cursus informatie
Cursus201500018
Studiepunten (ECTS)5
CursustypeCursus
VoertaalEngels
Contactpersoonprof.dr. R.J. Wieringa
E-mailr.j.wieringa@utwente.nl
Docenten
Docent
Externe Docent
Docent
dr. D. Ionita
Contactpersoon van de cursus
prof.dr. R.J. Wieringa
Collegejaar2015
Aanvangsblok
1B
AanmeldingsprocedureZelf aanmelden via OSIRIS Student
Inschrijven via OSIRISJa
Leerdoelen
1.    To understand and explain the complexities of information security in a mature organization;
2.    To have knowledge of the common models and standards for managing information security and to be able to apply this to real-world organizations;
3.    To be familiar with the state of the practice and the state of the art in information security and be able to assess the position of an organization in this field;
4.    To be familiar with the leading standards in this area, their shortcomings and practical implementation guidelines, and to be able to apply this on a given organization
5.    To be able to map risk appetite to control objectives, control and guidance documentation, and  to assess the compliance against control objectives using expert assessment and internal audit;
6.    To understand the common risks and controls in information security;
7.    To be able to do basic security assessments
Inhoud
ASSESSMENT AND IMPROVEMENT CAPABILITIES
GOVERNANCE AND RISK MANAGEMENT -Managing and governing information risks. Risk management methodologies in the industry. Overview of the leading control frameworks. Compliance against security risks and reporting. Common pitfalls in implementation and research challenges.
IDENTITY AND ACCESS MANAGEMENT -Managing electronic identities in B2B and B2C and their importance to organizational security. Cross use of EI between government agencies and the financial sector. Potential business growth areas.
ASSESSMENT OF INDUSTRIAL CONTROL SYSTEMS -Introduction to ICS and trends and common security threats. Differences between managing the security of ICS and IT systems. Common challenges in ICS security and how organizations approach them. Live demonstration of an ICS attack.
PHYSICAL SECURITY AND SECURITY AWARENESS-The link between physical, digital and social security. Physical security controls. Social engineering. Methodologies for enhancing security awareness. Penetration testing. Research challenges and potential business growth areas. Short exercise.

ALERTING AND MONITORING CAPABILITIES
SECURITY MONITORING –Development and deployment of monitoring capabilities. Live demo (or visit of operational) security operations center (SOC).
MANAGED SECURITY SERVICES -Outsourcing and managing services involving operational security such as SIEM, Log Management, Layer 7 protection and SOC deployment. Design, implementation and maintenance of security solutions. Live demo.

RESPONSE AND RECOVERY CAPABILITIES
INCIDENT AND THREAT MANAGEMENT –Identification of potential threats and events of interest. Triage of threats and analysis of incidents. Response and escalation procedures and processes. Few cases from the industry and a live exercise jointly with the crisis management lecture.
CRISIS MANAGEMENT AND BUSINESS CONTINUITY-Developing agile response capabilities. Crisis management governance. Decision making, escalation and notification processes. Few cases from the industry. Live exercise.

Participating studies
BIT and RI (3TU Cybersecurity, with tele-lectures to TU Delft)
Voorkennis
Mandatory:
Knowledge of basic security concepts and security controls. Solid knowledge of information technology and its role in the organization.

Recommended:
Knowledge of security frameworks and risk assessment methodologies.
DEELNEMENDE OPLEIDING
M-BIT
DEELNEMENDE OPLEIDING
M-CSC
Verplicht materiaal
-
Aanbevolen materiaal
Studiemateriaal
Research Papers
Studiemateriaal
White papers
Werkvormen
Hoorcollege

Overig onderwijs

Project

Responsiecollege

Toetsen
Tentamen en presentatie

SluitenHelpPrint
Switch to English