Section: Security Risk Management | Information Security (Spring 2023)

Section outline

Security Risk Management

Discussion Points:

Information Assurance

What is Risk, Purpose, Risk Level

Identification of Assets

Identification of Key Risk Indicators (KRIs)
Identification of Risk-Scenarios
Relationship between Vulnerabilities and Risk Scenarios based on Assets
Risk Frequency Evaluation
Likelihood Scale
Risk frequency based on Risk Scenarios on assets if vulnerability
Risk Analysis
Impact Scale
Risk Rating Table
Risk Determination
Risk Rating Matrix and calculation
Classification of Risk Triggers
Business Impact Analysis (BIA)
Estimated Downtime
Recovery Point Objective (RPO)
Recovery Time Objective (RTO)
Maximum Tolerable Downtime (MTD)
Critical Business Ratings with RTOs/RPOs

Expected Learning Outcomes:

Recognize the digital transmission technologies used for modern communication.

Identify and differentiate among various digital to digital, analog to digital conversion techniques.

Appreciate what important role transmission modes play in digital communication.

Resources of Learning:
- Select activity Lecture 3 Slide (updated)
  
  Lecture 3 Slide (updated) File
  
  Students must
  
  Mark as done
- Select activity Lecture 4 Slide
  
  Lecture 4 Slide File
  
  Students must
  
  Mark as done
- Select activity Update Risk Management Slide
  
  Update Risk Management Slide File
  
  Students must
  
  Mark as done

Welcome to Information Security

Announcements

Students Interest Survey!!!

Text Book

Reference Books

Ethical Hacking and Countermeasures, Version11 -EC Council

PO's for OBE

Course Outline_CSE 423

Course Resources

Lecture_1(Information Security and It’s Elements)

Lecture_2(Ethical Hacking and Concept)

Lecture_3_4(Security Risk Management)

Lecture_5(Incident Management)

Lecture_6(AI and ML in Information Security)

Lecture_7_8(Malware)

Introduction to Information Security

Lecture_1 Slide

Open Discussion

Daily Assessment

Ethical Hacking and Concept

Lecture_2 Slide

Open Discussion

Security Risk Management

Lecture 3 Slide (updated)

Lecture 4 Slide

Update Risk Management Slide

Incident Management and Process

Lecture 5 slide

AI and ML in Information Security

Lecture 6 Slide

Assignment

Assignment Submission

Malware

Lecture 7 Slide

Open Discussion

Personal Device Security

Lecture-8

Lecture-9

Vulnerability Assessment and Penetration Testing - VAPT

Lecture-10_Vulnerability Assessment and Penetration Testing

System Hacking and Security

Lecture-11_System Hacking and Security

Cryptography and Cyber Law

Cryptography

Cyber Law

Quiz 3

Quiz 3

Quiz 3 Answer's script

Section outline

Security Risk Management

Discussion Points:

Expected Learning Outcomes:

Resources of Learning: