Coursera

  • Artes e HumanasChevron Right
  • NegóciosChevron Right
  • Ciência da ComputaçãoChevron Right
  • Ciência de DadosChevron Right
  • Tecnologia da informaçãoChevron Right
  • Ciências BiológicasChevron Right
  • Matemática e LógicaChevron Right
  • Desenvolvimento Pessoal
  • Ciência e Engenharia FísicaChevron Right
  • Ciências SociaisChevron Right
  • LínguasChevron Right
  • Diplomas e certificadosChevron Right
  • Explore todo o Coursera
Loupe Copy
  • Navegar
  • Pesquisar
  • For Enterprise
  • Entrar
  • Criar conta
  • Explore
  • For Enterprise
  • Sign Up
  • Log In
Coursera

Security Operations and Administration

Visão geralVisualizarPerguntas frequentesDesenvolvedoresCustoClassificações e avaliações
Página inicialTecnologia da informaçãoSegurança

Security Operations and Administration

(ISC)²

Informações sobre o curso: Security operations and administration is the task of identifying an organization's information assets and the documentation needed for policy implementation, standards, procedures, and guidelines to ensure confidentiality, integrity, and availability. You will understand the process necessary for working with management and information owners, custodians, and users so that proper data classifications are defined. This will ensure the proper handling of all hard copy and electronic information. The Security operations and Administration course addresses basic security concepts and the application of those concepts in the day to day operation and administration of enterprise computer systems and the information that they host.Ethical considerations in general, and the (ISC)2 Code of Ethics in particular, provide the backdrop for any discussion of information security and SSCP candidates will be tested on both. Information security professionals often find themselves in positions of trust and must be beyond reproach in every way.Several core principles of information security stand above all others and this domain covers these principles in some depth. It can be said that the CIA triad of confidentiality, integrity and availability forms the basis for almost everything that we do in information security and the SSCP candidate must not only fully understand these principles but be able to apply them in all situations. additional security concepts covered in this domain include privacy, least privilege, non-repudiation and the separation of duties. Course Objectives 1. Define Code of Ethics 2. Describe the security concepts 3. Document and operate security controls 4. Describe the asset management process 5. Implement compliance controls 6. Assess compliance controls 7. Describe the change management process 8. Contribute to the security awareness training program 9. Contribute to physical security operations

Desenvolvido por:  (ISC)²
(ISC)²
  • (ISC)² Education & Training

    Ministrado por:  (ISC)² Education & Training

    Education & Training
Informações básicas
Curso 2 de 6 no (ISC)² Systems Security Certified Practitioner (SSCP) Specialization
NívelBásico
Idioma
English
Como ser aprovadoSeja aprovado em todas as tarefas para concluir o curso.
Classificação do usuário
4.5 estrelas
Classificação média do usuário 4.5Veja o que os aprendizes disseram
Visualizar
Programa
SEMANA 1
Understand and Comply with Code of Ethics and Security Concepts
Module Topics: (ISC)2 Code of Ethics, Organizational Code of Ethics, There are usually three types of controls, managerial (sometimes called administrative), Technical (sometimes called logical), and physical (sometimes called operational), Deterrent, Preventative, Detective, and Corrective Controls. Understand and Comply with Code of Ethics: In (ISC)2 Code of Ethics, you will learn about Code of Ethics, and Code of Ethics Canons. In Organizational Code of Ethics, you will learn about how a code of ethics applies to security practitioners, and applying ethical principles. Understand Security Concepts: In Confidentiality, you will learn about consequences of a breach, and ensuring confidentiality. In integrity, you will learn about consequences of integrity failure, availability, and consequences of availability failures. You will also Non-Repudiation. In Privacy, you will understand core guidelines. In least privilege, you will learn about least privilege and cots Applications. You will understand the concept of separation of duties and defense in depth, examples approaches, and additional controls. In Risk based Controls, you will learn about risk assessment data. Security concepts also covers accountability and authorization.
10 videos, 10 leituras
  1. Вопрос для обсуждения: Discussion: The Meaning of Information Security
  2. Vídeo: Security Operations and Administration Course Introduction
  3. Материал для самостоятельного изучения: Understand and Comply with Code of Ethics
  4. Vídeo: Security Concepts: Confidentiality
  5. Материал для самостоятельного изучения: Security Concepts: Confidentiality
  6. Vídeo: Security Concepts: Ensuring Confidentiality
  7. Материал для самостоятельного изучения: Security Concepts: Ensuring Confidentiality
  8. Vídeo: Security Concepts: Consequences of Integrity Failures
  9. Материал для самостоятельного изучения: Security Concepts: Consequences of Integrity Failures
  10. Vídeo: Security Concepts: Core Guidelines
  11. Материал для самостоятельного изучения: Security Concepts: Core Guidelines
  12. Vídeo: Security Concepts: Least Privilege
  13. Материал для самостоятельного изучения: Security Concepts: Least Privilege
  14. Vídeo: Security Concepts: Additional Controls
  15. Материал для самостоятельного изучения: Security Concepts: Additional Controls
  16. Vídeo: Security Concepts: Risk Assessment Data
  17. Материал для самостоятельного изучения: Security Concepts: Risk Assessment Data
  18. Vídeo: Security Controls: Deterrent, Preventive, Detective, and Corrective Controls
  19. Материал для самостоятельного изучения: Security Controls: Deterrent, Preventive, Detective, and Corrective Controls
  20. Vídeo: Security Controls: Timeline of a Security Incident
  21. Материал для самостоятельного изучения: Security Controls: Timeline of a Security Incident
Nota atribuída: Quiz 1
SEMANA 2
Participate in Asset Management
Module Topics: Life Cycle, Hardware/Software, and Data. In life Cycle, you will learn about the waterfall model, it's benefits and drawbacks, requirements gathering and analysis, requirements definition, system design, implementation, integration, testing, deployment of system, maintenance, additional application development methods, system vulnerabilities, secure development, and acquisition practices, OWASP top ten, guidelines for developers, IT asset management (ITAM), device management, continuous diagnostics and mitigation (CDM), hardware, hardware asset management desired state, hardware asset management data, the SSCP's challenge, impact and results. In Data, you will learn about secure information storage, considerations, encryption vulnerabilities, database encryption, data scrubbing, data deduplication, managing encryption keys, consideration, Information Rights Management (IRM), secure output, data retention and disposal, shredders, security levels, destruction of magnetic media, erasure or reformatting, data wiping, degaussing, and disclosure controls: data leakage prevention.
14 videos, 14 leituras
  1. Vídeo: Asset Management: Life Cycle
  2. Материал для самостоятельного изучения: Asset Management: Life Cycle
  3. Vídeo: Asset Management: The Waterfall Model
  4. Материал для самостоятельного изучения: Asset Management: The Waterfall Model
  5. Vídeo: Asset Management: Benefits and Drawbacks
  6. Материал для самостоятельного изучения: Asset Management: Benefits and Drawbacks
  7. Vídeo: Asset Management: Deployment of System
  8. Материал для самостоятельного изучения: Asset Management: Deployment of System
  9. Vídeo: Asset Management: OWASP Top Ten
  10. Материал для самостоятельного изучения: Asset Management: OWASP Top Ten
  11. Vídeo: Asset Management: Guidelines for Developers
  12. Материал для самостоятельного изучения: Asset Management: Guidelines for Developers
  13. Vídeo: Asset Management: IT Asset Management (ITAM)
  14. Материал для самостоятельного изучения: Asset Management: IT Asset Management (ITAM)
  15. Vídeo: Asset Management: Impact and Result
  16. Материал для самостоятельного изучения: Asset Management: Impact and Result
  17. Vídeo: Asset Management: Encryption Vulnerabilities
  18. Материал для самостоятельного изучения: Asset Management: Encryption Vulnerabilities
  19. Vídeo: Asset Management: Data Scrubbing
  20. Материал для самостоятельного изучения: Asset Management: Data Scrubbing
  21. Vídeo: Asset Management: Considerations
  22. Материал для самостоятельного изучения: Asset Management: Considerations
  23. Vídeo: Asset Management: Secure Output
  24. Материал для самостоятельного изучения: Asset Management: Secure Output
  25. Vídeo: Asset Management: Destruction of Magnetic Media
  26. Материал для самостоятельного изучения: Asset Management: Destruction of Magnetic Media
  27. Vídeo: Asset Management: Disclosure Controls
  28. Материал для самостоятельного изучения: Asset Management: Disclosure Controls
Nota atribuída: Quiz 2
SEMANA 3
Implement and Assess Compliance with Controls & Participate in Change Management Duties
Module Topics: Technical Controls, Operational Controls, Managerial Controls, Security Policies, Standards, Guidelines, and Procedures, Implementation and Configuration Management Plan, security Impact Assessment, System Architecture/Interoperability of Systems, Testing Patches, Fixes, and Updates. In technical Controls, you will learn about identification and authentication, logical access controls, public access controls, audit trails. In Operational Controls, you will learn about operational security measures, operational solutions, managerial Controls. In Security Policies, Standards, Guidelines, and Procedures, you will learn about subject-specific security policies, typical policy elements, policy life cycle, components of a security policy, standard guidelines, and procedures. Participate in Change Management Duties: In Implementation and Configuration Management Plan, you will learn about release management, release manager, release management policy, release management process, code signing, release management tools, systems assurance and controls validation, configuration management (CM), CM process, CM system goals, operational aspects of CM, hardware inventory, software inventory, configuration lists, configuration management for opening systems, identification, automated configuration management tools, control, accounting, and auditing. You will also understand the concepts of Security Impact Assessment and System Architecture/Interoperability of Systems. In Testing, Patches, Fixes, and Updates, you will learn about patch management, patch management process.
9 videos, 9 leituras
  1. Vídeo: Compliance with Controls: Technical Controls
  2. Материал для самостоятельного изучения: Compliance with Controls: Technical Controls
  3. Vídeo: Compliance with Controls: Managerial Controls
  4. Материал для самостоятельного изучения: Compliance with Controls: Managerial Controls
  5. Vídeo: Compliance with Controls: Policy Life Cycle
  6. Материал для самостоятельного изучения: Compliance with Controls: Policy Life Cycle
  7. Вопрос для обсуждения: Discussion: Characteristics of Policies
  8. Вопрос для обсуждения: Discussion: Examples of Controls
  9. Vídeo: Change Management Duties: Implementation and Configuration Management Plan
  10. Материал для самостоятельного изучения: Change Management Duties: Implementation and Configuration Management Plan
  11. Vídeo: Change Management Duties: Systems Assurance and Controls Validation
  12. Материал для самостоятельного изучения: Change Management Duties: Systems Assurance and Controls
  13. Vídeo: Change Management Duties: CM Process
  14. Материал для самостоятельного изучения: Change Management Duties: CM Process
  15. Vídeo: Change Management Duties: Configuration Management for Operating Systems
  16. Материал для самостоятельного изучения: Change Management Duties: Configuration Management for Operating Systems
  17. Vídeo: Change Management Duties: Control
  18. Материал для самостоятельного изучения: Change Management Duties: Control
  19. Vídeo: Change Management Duties: Testing Patches, Fixes, and Updates
  20. Материал для самостоятельного изучения: Change Management Duties: Testing Patches, Fixes, and Updates
Nota atribuída: Week 3 Quiz
SEMANA 4
Participate in Physical Security Operations & Security Awareness Training
Module Topics: Security Awareness Training, Physical Security, Building Security, keys, Locks, and safes, communications and Server Rooms, Restricted and Work Area Security, Utilities and HVAC Considerations, Fire Prevention, Detection, and Suppression. Participate in Physical Security Operations: In Physical Security, you will learn about interior access control elements, and escort and visitor control. In building security, you will learn about doors, perimeter doors, door locks, mantraps, and turnstiles. In Keys, Locks, and Safe, you will learn about types of locks, hi-tech keys, safes, vaults, containers, key control, medeco guide for developing and managing key control. In communications and Server Rooms, you will learn about securing the area, protection from lightning, server rooms, and rack security. In Restricted and Work Area Security, you will learn about restricted work areas, data center security, and the "two- person rule". In Utilities and HVAC Considerations, you will learn about utilities and power uninterruptible power supply, generator, HVAC, air contamination, guidelines, and water issues. In Fire Prevention, Detection, and Suppression, you will learn about fire detection, fire suppression, sprinkler systems, and gas suppression systems.
11 videos, 11 leituras
  1. Vídeo: Physical Security Operations: Physical Security
  2. Материал для самостоятельного изучения: Physical Security Operations: Physical Security
  3. Vídeo: Physical Security Operations: Doors
  4. Материал для самостоятельного изучения: Physical Security Operations: Doors
  5. Vídeo: Physical Security Operations: Door Locks
  6. Материал для самостоятельного изучения: Physical Security Operations: Door Locks
  7. Vídeo: Physical Security Operations: Turnstiles
  8. Материал для самостоятельного изучения: Physical Security Operations: Turnstiles
  9. Vídeo: Physical Security Operations: Securing the Area
  10. Материал для самостоятельного изучения: Physical Security Operations: Securing the Area
  11. Vídeo: Physical Security Operations: Rack Security
  12. Материал для самостоятельного изучения: Physical Security Operations: Rack Security
  13. Vídeo: Physical Security Operations: HVAC
  14. Материал для самостоятельного изучения: Physical Security Operations: HVAC
  15. Vídeo: Security Operations: Sprinkler Systems
  16. Материал для самостоятельного изучения: Security Operations: Sprinkler Systems
  17. Vídeo: Security Operations: Gas Suppression Systems
  18. Материал для самостоятельного изучения: Security Operations: Gas Suppression Systems
  19. Vídeo: Security Awareness Training: Critical Success Factors
  20. Материал для самостоятельного изучения: Security Awareness Training: Critical Success Factors
  21. Vídeo: Security Awareness Training: Training
  22. Материал для самостоятельного изучения: Security Awareness Training: Training
Nota atribuída: Week 4 Quiz
SEMANA 5
Case Study
    Nota atribuída: Security Operations and Administration Case Study
    SEMANA 6
    Exam
    1 leituras
    1. Материал для самостоятельного изучения: SSCP Exam Information
    Nota atribuída: End of the Course Assessment

    Perguntas frequentes
    Como funciona
    Задания курса
    Задания курса

    Каждый курс — это интерактивный учебник, который содержит видеоматериалы, тесты и проекты.

    Помощь сокурсников
    Помощь сокурсников

    Общайтесь с тысячами других учащихся: обсуждайте идеи, материалы курса и помогайте друг другу осваивать новые понятия.

    Сертификаты
    Сертификаты

    Получите документы о прохождении курсов и поделитесь своим успехом с друзьями, коллегами и работодателями.

    Desenvolvedores
    (ISC)²
    (ISC)² is an international nonprofit membership association focused on inspiring a safe and secure cyber world. Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, (ISC)2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security. www.isc2.org
    Custo
    Comprar curso
    Acesso aos materiais do curso

    Disponível

    Acesso a materiais valendo nota

    Disponível

    Receba uma nota final

    Disponível

    Obtenha um Certificado de Curso compartilhável

    Disponível

    Classificações e avaliações
    Avaliado em 4.5 de 5 decorrente de 4 avaliações

    GB

    Thank you. Great course. The instructor breaks everything down, and makes it easy to learn.

    ANSHLESH SAXENA

    The course is very effective in teaching application of knowledge to Practice. It is very well structured, very impressively conducted, keeps the interest in the subject alive and encourages the participant to keep going. it gives a good overview of the necessary aspects of Information Security and certainly instills the sense of security in the participants mind. Kudos to the Instructor and the Coursera Community.



    Coursera
    O Coursera proporciona acesso universal à melhor educação do mundo fazendo parcerias com as melhores universidades e organizações para oferecer cursos on-line.
    © 2018 Coursera Inc. Todos os direitos reservados.
    Baixar na App StoreBaixar no Google Play
    • Coursera
    • Sobre
    • Liderança
    • Carreiras
    • Lista de cursos
    • Certificados
    • Notas
    • Para negócios
    • For Government
    • Comunidade
    • parceiros
    • Orientadores
    • Tradutores
    • Desenvolvedores
    • Testadores beta
    • Conectar
    • Blog
    • Facebook
    • LinkedIn
    • Twitter
    • Google+
    • Tech Blog
    • Mais
    • Termos
    • Privacidade
    • Ajuda
    • Acessibilidade
    • Imprensa
    • Contato
    • Diretório
    • Afiliados