CYS403

IN PROGRESS

Security Risk Management, Governance and Control

CYS403 covers security risk management, governance, and control, including risk assessment methodologies, governance frameworks, security policy development, and compliance and audit practices. This section contains structured study material for understanding how organizations identify, evaluate, and manage information security risk.

Course Code CYS403

Credit Hours 3

Prerequisites CYS401

01_DESCRIPTION

CYS403 introduces the principles of security risk management, governance, and control, covering risk identification and assessment, governance frameworks and standards, security policy development, regulatory compliance, and audit and monitoring practices. The course equips students with the knowledge to evaluate an organization's risk posture and design effective governance structures and controls.

02_SYLLABUS_INDEX

0x01Risk Identification & AssessmentIDX_01

0x02Risk Treatment & Mitigation StrategiesIDX_02

0x03Governance Frameworks (ISO 27001, NIST, COBIT)IDX_03

0x04Security Policies & ProceduresIDX_04

0x05Regulatory Compliance & StandardsIDX_05

0x06Security Auditing & Continuous MonitoringIDX_06

03_LEARNING_OUTCOMES