To provide the knowledge and skills required to evaluate security risks inherent in information systems (workstations, servers, LAN, WAN, intranets, extranets and the Internet), and to identify the policies and countermeasures required to prevent them.
IT directors, projects managers, corporate managers and network specialists.
Knowledge of computer science.
Gives a good general view of information systems security.
Florence C. / Directrice des technologies et services, UNI Coopération financière
- Introduction to information systems security
- Identifying risks and threats
- Review of latest vulnerabilities and attacks (worms, ransomware, social engineering)
- Coding and steganography
- Deep security: firewalls, intrusion detection systems, and decoy systems (Honeypot), virtual private networks
- Wireless networks: risks and solutions
- Virtual private networks (VPN): available technologies
- Logical security: password management and single sign-on
- Securing Web sites, servers, workstations, cell phones and connected objects
- Security incidents: implementing a pre-emptive action plan, and handling the response to an incident
- Security policies: risk analysis, security techniques, the role of security audits, and implementing strategies
- Developing security policies: ISO 27001 and 27002 norms
- The CIS Critical Security Controls
- Security and Cloud Computing
Note: ISO 27001, 27002 and 27005 norms are covered in detail in Course RE201 (27001/27002).