Course details

Security Measures: Implementing Security Controls

Security Measures: Implementing Security Controls


Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level



Overview/Description

Explore the use of security controls with the NIST Cybersecurity Framework in this 14-video course, which examines anatomy of security controls, from common to advanced and complex. You will discover how to test and monitor security controls, including the most basic quick-win controls for several control types. Key concepts covered here include security controls in relation to the overall NIST Cybersecurity Framework, and how security controls are relevant in SecOps; the major security control types and components of a security control; and defensive and quick-win controls for major control types. Next, learn how they are compromised, and steps for root cause analysis; learn the CIS critical security controls and how they are implemented; and observe how to assess security controls, including establishing security metrics for risk management framework and reporting. Learn how to investigate security controls when one fails and describe how to mitigate outcomes; learn processes of auditing security controls; and learn potential risk scenarios and how to mitigate and respond using security controls, including how to test controls to effectively respond.



Expected Duration (hours)
1.3

Lesson Objectives

Security Measures: Implementing Security Controls

  • discover the key concepts covered in this course
  • describe security controls in relation to the overall NIST Cybersecurity Framework and how security controls are relevant in SecOps
  • describe the major security control types and the components of a security control
  • describe various areas where security controls are commonly used
  • describe defensive and quick win controls for the major control types, how they are compromised, and steps for root cause analysis
  • describe the CIS critical security controls and how they are implemented
  • describe when to use security controls and how they are enforced
  • describe various complex security controls and how they are implemented, including industrial and government security controls and baselines
  • describe various controls for assessment and monitoring
  • describe how to assess security controls, including establishing security metrics for risk management framework and reporting
  • investigate security controls when one fails and describe how to mitigate the outcome
  • describe processes of auditing security controls, including how to conduct an audit on control policies
  • describe potential risk scenarios and how to mitigate and respond using security controls, including how to test the controls to effectively respond
  • summarize the key concepts covered in this course
  • Course Number:
    it_soimmsdj_01_enus

    Expertise Level
    Intermediate