Security operations and administration is the task of identifying an organization's information assets and the documentation needed for policy implementation, standards, procedures, and guidelines to ensure confidentiality, integrity, and availability. You will understand the process necessary for working with management and information owners, custodians, and users so that proper data classifications are defined. This will ensure the proper handling of all hard copy and electronic information.
Este curso faz parte do (ISC)² Systems Security Certified Practitioner (SSCP)
Security Operations and Administration
oferecido por
Informações sobre o curso
7,836 visualizações recentes
100% on-line
Comece imediatamente e aprenda em seu próprio cronograma.
Curso 2 de 6 no
Prazos flexíveis
Redefinir os prazos de acordo com sua programação.
Nível iniciante
Aprox. 15 horas para completar
Sugerido: 5 hours/week
Inglês
Legendas: Inglês
oferecido por
(ISC)²
(ISC)² is an international nonprofit membership association focused on inspiring a safe and secure cyber world. Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, (ISC)2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security. www.isc2.org
Programa - O que você aprenderá com este curso
3 horas para concluir
Understand and Comply with Code of Ethics and Security Concepts
Module Topics: (ISC)2 Code of Ethics, Organizational Code of Ethics, There are usually three types of controls, managerial (sometimes called administrative), Technical (sometimes called logical), and physical (sometimes called operational), Deterrent, Preventative, Detective, and Corrective Controls. Understand and Comply with Code of Ethics: In (ISC)2 Code of Ethics, you will learn about Code of Ethics, and Code of Ethics Canons. In Organizational Code of Ethics, you will learn about how a code of ethics applies to security practitioners, and applying ethical principles. Understand Security Concepts: In Confidentiality, you will learn about consequences of a breach, and ensuring confidentiality. In integrity, you will learn about consequences of integrity failure, availability, and consequences of availability failures. You will also Non-Repudiation. In Privacy, you will understand core guidelines. In least privilege, you will learn about least privilege and cots Applications. You will understand the concept of separation of duties and defense in depth, examples approaches, and additional controls. In Risk based Controls, you will learn about risk assessment data. Security concepts also covers accountability and authorization.
3 horas para concluir
10 vídeos (Total 67 mín.), 10 leituras, 1 teste
10 videos
Security Concepts: Confidentiality7min
Security Concepts: Ensuring Confidentiality4min
Security Concepts: Consequences of Integrity Failures6min
Security Concepts: Core Guidelines5min
Security Concepts: Least Privilege7min
Security Concepts: Additional Controls6min
Security Concepts: Risk Assessment Data5min
Security Controls: Deterrent, Preventive, Detective, and Corrective Controls5min
Security Controls: Timeline of a Security Incident6min
10 leituras
Understand and Comply with Code of Ethics10min
Security Concepts: Confidentiality10min
Security Concepts: Ensuring Confidentiality10min
Security Concepts: Consequences of Integrity Failures10min
Security Concepts: Core Guidelines10min
Security Concepts: Least Privilege10min
Security Concepts: Additional Controls10min
Security Concepts: Risk Assessment Data10min
Security Controls: Deterrent, Preventive, Detective, and Corrective Controls10min
Security Controls: Timeline of a Security Incident10min
1 exercício prático
Quiz 120min
4 horas para concluir
Participate in Asset Management
Module Topics: Life Cycle, Hardware/Software, and Data. In life Cycle, you will learn about the waterfall model, it's benefits and drawbacks, requirements gathering and analysis, requirements definition, system design, implementation, integration, testing, deployment of system, maintenance, additional application development methods, system vulnerabilities, secure development, and acquisition practices, OWASP top ten, guidelines for developers, IT asset management (ITAM), device management, continuous diagnostics and mitigation (CDM), hardware, hardware asset management desired state, hardware asset management data, the SSCP's challenge, impact and results. In Data, you will learn about secure information storage, considerations, encryption vulnerabilities, database encryption, data scrubbing, data deduplication, managing encryption keys, consideration, Information Rights Management (IRM), secure output, data retention and disposal, shredders, security levels, destruction of magnetic media, erasure or reformatting, data wiping, degaussing, and disclosure controls: data leakage prevention.
4 horas para concluir
14 vídeos (Total 84 mín.), 14 leituras, 1 teste
14 videos
Asset Management: The Waterfall Model10min
Asset Management: Benefits and Drawbacks5min
Asset Management: Deployment of System4min
Asset Management: OWASP Top Ten5min
Asset Management: Guidelines for Developers5min
Asset Management: IT Asset Management (ITAM)5min
Asset Management: Impact and Result4min
Asset Management: Encryption Vulnerabilities6min
Asset Management: Data Scrubbing6min
Asset Management: Considerations6min
Asset Management: Secure Output6min
Asset Management: Destruction of Magnetic Media4min
Asset Management: Disclosure Controls4min
14 leituras
Asset Management: Life Cycle10min
Asset Management: The Waterfall Model10min
Asset Management: Benefits and Drawbacks10min
Asset Management: Deployment of System10min
Asset Management: OWASP Top Ten10min
Asset Management: Guidelines for Developers10min
Asset Management: IT Asset Management (ITAM)10min
Asset Management: Impact and Result10min
Asset Management: Encryption Vulnerabilities10min
Asset Management: Data Scrubbing10min
Asset Management: Considerations10min
Asset Management: Secure Output10min
Asset Management: Destruction of Magnetic Media10min
Asset Management: Disclosure Controls10min
1 exercício prático
Quiz 220min
3 horas para concluir
Implement and Assess Compliance with Controls & Participate in Change Management Duties
Module Topics: Technical Controls, Operational Controls, Managerial Controls, Security Policies, Standards, Guidelines, and Procedures, Implementation and Configuration Management Plan, security Impact Assessment, System Architecture/Interoperability of Systems, Testing Patches, Fixes, and Updates. In technical Controls, you will learn about identification and authentication, logical access controls, public access controls, audit trails. In Operational Controls, you will learn about operational security measures, operational solutions, managerial Controls. In Security Policies, Standards, Guidelines, and Procedures, you will learn about subject-specific security policies, typical policy elements, policy life cycle, components of a security policy, standard guidelines, and procedures.
3 horas para concluir
9 vídeos (Total 58 mín.), 9 leituras, 1 teste
9 videos
Compliance with Controls: Managerial Controls6min
Compliance with Controls: Policy Life Cycle7min
Change Management Duties: Implementation and Configuration Management Plan7min
Change Management Duties: Systems Assurance and Controls Validation5min
Change Management Duties: CM Process5min
Change Management Duties: Configuration Management for Operating Systems6min
Change Management Duties: Control8min
Change Management Duties: Testing Patches, Fixes, and Updates6min
9 leituras
Compliance with Controls: Technical Controls10min
Compliance with Controls: Managerial Controls10min
Compliance with Controls: Policy Life Cycle10min
Change Management Duties: Implementation and Configuration Management Plan10min
Change Management Duties: Systems Assurance and Controls10min
Change Management Duties: CM Process10min
Change Management Duties: Configuration Management for Operating Systems10min
Change Management Duties: Control10min
Change Management Duties: Testing Patches, Fixes, and Updates10min
1 exercício prático
Week 3 Quiz20min
3 horas para concluir
Participate in Physical Security Operations & Security Awareness Training
Module Topics: Security Awareness Training, Physical Security, Building Security, keys, Locks, and safes, communications and Server Rooms, Restricted and Work Area Security, Utilities and HVAC Considerations, Fire Prevention, Detection, and Suppression. Participate in Physical Security Operations: In Physical Security, you will learn about interior access control elements, and escort and visitor control. In building security, you will learn about doors, perimeter doors, door locks, mantraps, and turnstiles. In Keys, Locks, and Safe, you will learn about types of locks, hi-tech keys, safes, vaults, containers, key control, medeco guide for developing and managing key control. In communications and Server Rooms, you will learn about securing the area, protection from lightning, server rooms, and rack security. In Restricted and Work Area Security, you will learn about restricted work areas, data center security, and the "two- person rule". In Utilities and HVAC Considerations, you will learn about utilities and power uninterruptible power supply, generator, HVAC, air contamination, guidelines, and water issues. In Fire Prevention, Detection, and Suppression, you will learn about fire detection, fire suppression, sprinkler systems, and gas suppression systems.
3 horas para concluir
11 vídeos (Total 65 mín.), 11 leituras, 1 teste
11 videos
Physical Security Operations: Doors4min
Physical Security Operations: Door Locks4min
Physical Security Operations: Turnstiles6min
Physical Security Operations: Securing the Area6min
Physical Security Operations: Rack Security5min
Physical Security Operations: HVAC6min
Security Operations: Sprinkler Systems5min
Security Operations: Gas Suppression Systems5min
Security Awareness Training: Critical Success Factors7min
Security Awareness Training: Training6min
11 leituras
Physical Security Operations: Physical Security10min
Physical Security Operations: Doors10min
Physical Security Operations: Door Locks10min
Physical Security Operations: Turnstiles10min
Physical Security Operations: Securing the Area10min
Physical Security Operations: Rack Security10min
Physical Security Operations: HVAC10min
Security Operations: Sprinkler Systems10min
Security Operations: Gas Suppression Systems10min
Security Awareness Training: Critical Success Factors10min
Security Awareness Training: Training10min
1 exercício prático
Week 4 Quiz20min
Avaliações
Principais avaliações do SECURITY OPERATIONS AND ADMINISTRATION
por BDMar 15, 2020
Covers everything the young IT security professional should know - Masterfully compiled and presented.
por GBJul 4, 2018
Thank you. Great course. The instructor breaks everything down, and makes it easy to learn.
por ACNov 5, 2019
Informative, challenges you to contemplate practical application of security concepts
por AJan 15, 2019
am very proud of going through this course it gave me much knowledge and skills
Sobre (ISC)² Systems Security Certified Practitioner (SSCP)
Pursue better IT security job opportunities and prove knowledge with confidence. The SSCP Professional Training Certificate shows employers you have the IT security foundation to defend against cyber attacks – and puts you on a clear path to earning SSCP certification.
Learn on your own schedule with 120-day access to content aligned with the latest (ISC)2 SSCP exam domains. We’re offering the complete online self-paced program for only $1,000 – a $200 savings when you get all domains bundled together.
3 Steps to Career Advancement
1. Register for the course
2. Gain access for 120 days
3. Register and sit for the SSCP certification exam
Upon completing the SSCP Professional Certificate, you will:
1. Complete six courses of preparing you to sit for the Systems Security Certified Practitioner (SSCP) certification exam as outlined below.
Course 1 - Access Controls
Course 2 - Security Operations and Administration
Course 3 - Risk Identification, Monitoring, and Analysis/Incident Response and Recovery
Course 4 - Cryptography
Course 5 - Network and Communication Security
Course 6 - Systems and Application Security
2. Receive a certificate of program completion.
3. Understand how to implement, monitor and administer an organization’s IT infrastructure in accordance with security policies and procedures that ensure data confidentiality, integrity and availability.
Perguntas Frequentes – FAQ
Posso assistir uma prévia do curso antes de me inscrever?
Sim, você pode assistir uma prévia do primeiro vídeo e ver programa do curso antes de se inscrever. Você precisa comprar o curso para ter acesso ao conteúdo não incluído na prévia.
Quando terei acesso às palestras e às tarefas?
Se decidir se inscrever no curso antes da data de início da sessão, terá acesso a todos os vídeos das palestras e leituras do curso. Também poderá enviar tarefas assim que a sessão começar.
O que recebo ao me inscrever?
Uma vez inscrito, e tão logo sua sessão tenha iniciado, você terá acesso a todos os vídeos e outros recursos, incluindo itens de leitura e fórum de discussão do curso. Você poderá ver e enviar tarefas práticas e concluir tarefas com nota atribuída obrigatórias para obter uma nota e um Certificado de Curso.
Quando receberei meu Certificado de Curso?
Se você concluir o curso com êxito, seu Certificado de Curso eletrônico será adicionado à sua página de Participações e você poderá imprimi-lo ou adicioná-lo ao seu perfil no LinkedIn.
Por que não posso assistir este curso como ouvinte?
Este curso é um dos poucos oferecidos pela Coursera que está disponível apenas para alunos que tenham pago ou recebido auxílio financeiro, quando disponível.
Qual é a política de reembolso?
How long does it take to complete the course?
The course schedule contains approximately 16 hours of content material covering lectures, reading materials, a case study, and quizzes broken up over the course of 6 weeks.
Mais dúvidas? Visite o Central de Ajuda ao Aprendiz.