Informações sobre o curso

6,910 visualizações recentes

Security operations and administration is the task of identifying an organization's information assets and the documentation needed for policy implementation, standards, procedures, and guidelines to ensure confidentiality, integrity, and availability. You will understand the process necessary for working with management and information owners, custodians, and users so that proper data classifications are defined. This will ensure the proper handling of all hard copy and electronic information.
      The Security operations and Administration course addresses basic security concepts and the application of those concepts in the day to day operation and administration of enterprise computer systems and the information that they host.Ethical considerations in general, and the (ISC)2 Code of Ethics in particular, provide the backdrop for any discussion of information security and SSCP candidates will be tested on both. Information security professionals often find themselves in positions of trust and must be beyond reproach in every way.Several core principles of information security stand above all others and this domain covers these principles in some depth. It can be said that the CIA triad of confidentiality, integrity and availability forms the basis for almost everything that we do in information security and the SSCP candidate must not only fully understand these principles but be able to apply them in all situations. additional security concepts covered in this domain include privacy, least privilege, non-repudiation and the separation of duties.
  
 Course Objectives

Define Code of Ethics
Describe the security concepts
Document and operate security controls
Describe the asset management process
Implement compliance controls
Assess compliance controls
Describe the change management process
Contribute to the security awareness training program
Contribute to physical security operations

Curso 2 de 6 no

(ISC)² Systems Security Certified Practitioner (SSCP)

100% on-line

Comece imediatamente e aprenda em seu próprio cronograma.

Prazos flexíveis

Redefinir os prazos de acordo com sua programação.

Nível iniciante

Aprox. 17 horas para completar

Sugerido: 5 hours/week...

Inglês

Legendas: Inglês

Os alunos que estão fazendo este Course são

Technical Support Associates
Engineers

Software Engineers

Curso 2 de 6 no

(ISC)² Systems Security Certified Practitioner (SSCP)

100% on-line

Comece imediatamente e aprenda em seu próprio cronograma.

Prazos flexíveis

Redefinir os prazos de acordo com sua programação.

Nível iniciante

Aprox. 17 horas para completar

Sugerido: 5 hours/week...

Inglês

Legendas: Inglês

Programa - O que você aprenderá com este curso

Semana

1

3 horas para concluir

Understand and Comply with Code of Ethics and Security Concepts

Module Topics: (ISC)2 Code of Ethics, Organizational Code of Ethics, There are usually three types of controls, managerial (sometimes called administrative), Technical (sometimes called logical), and physical (sometimes called operational), Deterrent, Preventative, Detective, and Corrective Controls. Understand and Comply with Code of Ethics: In (ISC)2 Code of Ethics, you will learn about Code of Ethics, and Code of Ethics Canons. In Organizational Code of Ethics, you will learn about how a code of ethics applies to security practitioners, and applying ethical principles. Understand Security Concepts: In Confidentiality, you will learn about consequences of a breach, and ensuring confidentiality. In integrity, you will learn about consequences of integrity failure, availability, and consequences of availability failures. You will also Non-Repudiation. In Privacy, you will understand core guidelines. In least privilege, you will learn about least privilege and cots Applications. You will understand the concept of separation of duties and defense in depth, examples approaches, and additional controls. In Risk based Controls, you will learn about risk assessment data. Security concepts also covers accountability and authorization.

10 vídeos (Total 67 mín.), 10 leituras, 1 teste

10 videos

Security Operations and Administration Course Introduction11min

Security Concepts: Confidentiality7min

Security Concepts: Ensuring Confidentiality4min

Security Concepts: Consequences of Integrity Failures6min

Security Concepts: Core Guidelines5min

Security Concepts: Least Privilege7min

Security Concepts: Additional Controls6min

Security Concepts: Risk Assessment Data5min

Security Controls: Deterrent, Preventive, Detective, and Corrective Controls5min

Security Controls: Timeline of a Security Incident6min

10 leituras

Understand and Comply with Code of Ethics10min

Security Concepts: Confidentiality10min

Security Concepts: Ensuring Confidentiality10min

Security Concepts: Consequences of Integrity Failures10min

Security Concepts: Core Guidelines10min

Security Concepts: Least Privilege10min

Security Concepts: Additional Controls10min

Security Concepts: Risk Assessment Data10min

Security Controls: Deterrent, Preventive, Detective, and Corrective Controls10min

Security Controls: Timeline of a Security Incident10min

1 exercício prático

Quiz 120min

Semana

2

4 horas para concluir

Participate in Asset Management

Module Topics: Life Cycle, Hardware/Software, and Data. In life Cycle, you will learn about the waterfall model, it's benefits and drawbacks, requirements gathering and analysis, requirements definition, system design, implementation, integration, testing, deployment of system, maintenance, additional application development methods, system vulnerabilities, secure development, and acquisition practices, OWASP top ten, guidelines for developers, IT asset management (ITAM), device management, continuous diagnostics and mitigation (CDM), hardware, hardware asset management desired state, hardware asset management data, the SSCP's challenge, impact and results. In Data, you will learn about secure information storage, considerations, encryption vulnerabilities, database encryption, data scrubbing, data deduplication, managing encryption keys, consideration, Information Rights Management (IRM), secure output, data retention and disposal, shredders, security levels, destruction of magnetic media, erasure or reformatting, data wiping, degaussing, and disclosure controls: data leakage prevention.

14 vídeos (Total 84 mín.), 14 leituras, 1 teste

14 videos

Asset Management: Life Cycle7min

Asset Management: The Waterfall Model10min

Asset Management: Benefits and Drawbacks5min

Asset Management: Deployment of System4min

Asset Management: OWASP Top Ten5min

Asset Management: Guidelines for Developers5min

Asset Management: IT Asset Management (ITAM)5min

Asset Management: Impact and Result4min

Asset Management: Encryption Vulnerabilities6min

Asset Management: Data Scrubbing6min

Asset Management: Considerations6min

Asset Management: Secure Output6min

Asset Management: Destruction of Magnetic Media4min

Asset Management: Disclosure Controls4min

14 leituras

Asset Management: Life Cycle10min

Asset Management: The Waterfall Model10min

Asset Management: Benefits and Drawbacks10min

Asset Management: Deployment of System10min

Asset Management: OWASP Top Ten10min

Asset Management: Guidelines for Developers10min

Asset Management: IT Asset Management (ITAM)10min

Asset Management: Impact and Result10min

Asset Management: Encryption Vulnerabilities10min

Asset Management: Data Scrubbing10min

Asset Management: Considerations10min

Asset Management: Secure Output10min

Asset Management: Destruction of Magnetic Media10min

Asset Management: Disclosure Controls10min

1 exercício prático

Quiz 220min

Semana

3

3 horas para concluir

Implement and Assess Compliance with Controls & Participate in Change Management Duties

Module Topics: Technical Controls, Operational Controls, Managerial Controls, Security Policies, Standards, Guidelines, and Procedures, Implementation and Configuration Management Plan, security Impact Assessment, System Architecture/Interoperability of Systems, Testing Patches, Fixes, and Updates. In technical Controls, you will learn about identification and authentication, logical access controls, public access controls, audit trails. In Operational Controls, you will learn about operational security measures, operational solutions, managerial Controls. In Security Policies, Standards, Guidelines, and Procedures, you will learn about subject-specific security policies, typical policy elements, policy life cycle, components of a security policy, standard guidelines, and procedures. Participate in Change Management Duties: In Implementation and Configuration Management Plan, you will learn about release management, release manager, release management policy, release management process, code signing, release management tools, systems assurance and controls validation, configuration management (CM), CM process, CM system goals, operational aspects of CM, hardware inventory, software inventory, configuration lists, configuration management for opening systems, identification, automated configuration management tools, control, accounting, and auditing. You will also understand the concepts of Security Impact Assessment and System Architecture/Interoperability of Systems. In Testing, Patches, Fixes, and Updates, you will learn about patch management, patch management process.

9 vídeos (Total 58 mín.), 9 leituras, 1 teste

9 videos

Compliance with Controls: Technical Controls5min

Compliance with Controls: Managerial Controls6min

Compliance with Controls: Policy Life Cycle7min

Change Management Duties: Implementation and Configuration Management Plan7min

Change Management Duties: Systems Assurance and Controls Validation5min

Change Management Duties: CM Process5min

Change Management Duties: Configuration Management for Operating Systems6min

Change Management Duties: Control8min

Change Management Duties: Testing Patches, Fixes, and Updates6min

9 leituras

Compliance with Controls: Technical Controls10min

Compliance with Controls: Managerial Controls10min

Compliance with Controls: Policy Life Cycle10min

Change Management Duties: Implementation and Configuration Management Plan10min

Change Management Duties: Systems Assurance and Controls10min

Change Management Duties: CM Process10min

Change Management Duties: Configuration Management for Operating Systems10min

Change Management Duties: Control10min

Change Management Duties: Testing Patches, Fixes, and Updates10min

1 exercício prático

Week 3 Quiz20min

Semana

4

3 horas para concluir

Participate in Physical Security Operations & Security Awareness Training

Module Topics: Security Awareness Training, Physical Security, Building Security, keys, Locks, and safes, communications and Server Rooms, Restricted and Work Area Security, Utilities and HVAC Considerations, Fire Prevention, Detection, and Suppression. Participate in Physical Security Operations: In Physical Security, you will learn about interior access control elements, and escort and visitor control. In building security, you will learn about doors, perimeter doors, door locks, mantraps, and turnstiles. In Keys, Locks, and Safe, you will learn about types of locks, hi-tech keys, safes, vaults, containers, key control, medeco guide for developing and managing key control. In communications and Server Rooms, you will learn about securing the area, protection from lightning, server rooms, and rack security. In Restricted and Work Area Security, you will learn about restricted work areas, data center security, and the "two- person rule". In Utilities and HVAC Considerations, you will learn about utilities and power uninterruptible power supply, generator, HVAC, air contamination, guidelines, and water issues. In Fire Prevention, Detection, and Suppression, you will learn about fire detection, fire suppression, sprinkler systems, and gas suppression systems.

11 vídeos (Total 65 mín.), 11 leituras, 1 teste

11 videos

Physical Security Operations: Physical Security6min

Physical Security Operations: Doors4min

Physical Security Operations: Door Locks4min

Physical Security Operations: Turnstiles6min

Physical Security Operations: Securing the Area6min

Physical Security Operations: Rack Security5min

Physical Security Operations: HVAC6min

Security Operations: Sprinkler Systems5min

Security Operations: Gas Suppression Systems5min

Security Awareness Training: Critical Success Factors7min

Security Awareness Training: Training6min

11 leituras

Physical Security Operations: Physical Security10min

Physical Security Operations: Doors10min

Physical Security Operations: Door Locks10min

Physical Security Operations: Turnstiles10min

Physical Security Operations: Securing the Area10min

Physical Security Operations: Rack Security10min

Physical Security Operations: HVAC10min

Security Operations: Sprinkler Systems10min

Security Operations: Gas Suppression Systems10min

Security Awareness Training: Critical Success Factors10min

Security Awareness Training: Training10min

1 exercício prático

Week 4 Quiz20min

Instrutores

(ISC)² Education & Training

Education & Training

Perguntas Frequentes – FAQ

Posso assistir uma prévia do curso antes de me inscrever?
Sim, você pode assistir uma prévia do primeiro vídeo e ver programa do curso antes de se inscrever. Você precisa comprar o curso para ter acesso ao conteúdo não incluído na prévia.
Quando terei acesso às palestras e às tarefas?
Se decidir se inscrever no curso antes da data de início da sessão, terá acesso a todos os vídeos das palestras e leituras do curso. Também poderá enviar tarefas assim que a sessão começar.
O que recebo ao me inscrever?
Uma vez inscrito, e tão logo sua sessão tenha iniciado, você terá acesso a todos os vídeos e outros recursos, incluindo itens de leitura e fórum de discussão do curso. Você poderá ver e enviar tarefas práticas e concluir tarefas com nota atribuída obrigatórias para obter uma nota e um Certificado de Curso.
Quando receberei meu Certificado de Curso?
Se você concluir o curso com êxito, seu Certificado de Curso eletrônico será adicionado à sua página de Participações e você poderá imprimi-lo ou adicioná-lo ao seu perfil no LinkedIn.
Por que não posso assistir este curso como ouvinte?
Este curso é um dos poucos oferecidos pela Coursera que está disponível apenas para alunos que tenham pago ou recebido auxílio financeiro, quando disponível.
Qual é a política de reembolso?
How long does it take to complete the course?
The course schedule contains approximately 16 hours of content material covering lectures, reading materials, a case study, and quizzes broken up over the course of 6 weeks.

Mais dúvidas? Visite o Central de Ajuda ao Aprendiz.

Security Operations and Administration

Curso 2 de 6 no

100% on-line

Prazos flexíveis

Nível iniciante

Aprox. 17 horas para completar

Inglês

Curso 2 de 6 no

100% on-line

Prazos flexíveis

Nível iniciante

Aprox. 17 horas para completar

Inglês

Programa - O que você aprenderá com este curso

Understand and Comply with Code of Ethics and Security Concepts

Participate in Asset Management

Implement and Assess Compliance with Controls & Participate in Change Management Duties

Participate in Physical Security Operations & Security Awareness Training

Case Study

Exam

Principais avaliações do Security Operations and Administration

Instrutores

(ISC)² Education & Training

Sobre (ISC)²

Sobre (ISC)² Systems Security Certified Practitioner (SSCP)

Perguntas Frequentes – FAQ