PPT-Chapter 8 Information Systems Controls for System Reliability— Part 1: Information Security

Copyright 2012 Pearson Education Inc publishing as Prentice Hall 8 1 Learning Objectives Discuss how the COBIT framework can be used to develop sound internal control over an organizations information systems. Lecture 1. 1. Chapter 11 Security and Dependability. Topics covered. Dependability properties. The system attributes that lead to dependability.. Availability and . reliability. Systems should be available to deliver service and perform as expected.. 4. Identify the . five . factors that contribute to the increasing vulnerability of information resources, and provide a specific example of each one.. Compare and contrast human mistakes and social engineering, and provide a specific example of each one.. Introduction to Information Security. Unintentional Threats to Information Systems. Deliberate Threats to Information Systems. What Organizations Are Doing to Protect Information Resources. Information Security Controls. Information Security. Chapter 7. Foster School of Business . Acctg. 320. 1. Overview. Portions . of chapter 7 are very technical. , and beyond the scope of this course. . Read . pages 251-253 . Part 2: Confidentiality, Privacy, Processing Integrity, and Availability. Chapter 8. SECURITY. CONFIDENTIALITY. PRIVACY. PROCESSING INTEGRITY. AVAILABILITY. SYSTEMS. RELIABILITY. 1. FOSTER School of Business Acctg. 320. Introduction to Information Security. Unintentional Threats to Information Systems. Deliberate Threats to Information Systems. What Organizations Are Doing to Protect Information Resources. Information Security Controls. Chapter 8. 8-. 1. Learning Objectives. Explain how information security affects information systems reliability.. Discuss how a combination of preventive, detective, and corrective controls can be employed to provide reasonable assurance about the security of an organization’s information system.. Chapter 8. 8-. 1. Learning Objectives. Explain how information security affects information systems reliability.. Discuss how a combination of preventive, detective, and corrective controls can be employed to provide reasonable assurance about the security of an organization’s information system.. Applying the Risk Management Framework. April 2016. Objectives. Describe foundational concepts for managing cybersecurity . risk. Examine the relationship between RMF and Systems Engineering (SE) . Describe the RMF, . Software Vulnerability. System Vulnerability and Abuse. Commercial software contains flaws that create security vulnerabilities.. Hidden bugs (program code defects). Zero defects cannot be achieved because complete testing is not possible with large programs. Role-Based Cybersecurity Training for Information Technology Professionals 1 Module 1 This module will cover topics: Introduction Safeguarding the FMCSA Mission 2 3 T h i s c ou rse w il l d i sc Sotera. Defense Solutions. Are . Enterprise Security Risk Metrics . Really Needed?. Information Systems Executives and Program Managers Need Security Metrics to Establish an Effective Security Budget. . ConclusionsOHSU146s information security controls for enterprise information systems meet the controlbaselines for lowimpact systems as detailed in Recommended Security Controls for FederalInformation Reinforcing the Requirements for Security Awareness Training. . Dr. Ron Ross. Computer Security Division. Information Technology Laboratory. Today’s Climate. Highly interactive environment of powerful computing devices and interconnected systems...