Introduction

This course is designed to focus management’s attention on security. They need to know the ‘why security’ to make a good management choice as they are ultimately responsible for the security of their ministry/department. They are also responsible for daily decision-making and the infusion of values and culture throughout the organisation through their actions.

In this environment, it’s not surprising we frequently see breaches make headlines therefore, the executives need to recognise that compliance does not equal security and checking the box is no longer sufficient. The organisation must be able to quickly detect and respond to security incidents should they occur. It’s not enough to just focus on prevention as a truly motivated, resourceful attacker will find a way in.

Learning Outcome

At the end of the program, participants will be able to:

• Understand Information Security, Security Policy, and ISO/IEC 27001 Controls in Brief.
• Mitigate and manage risk as a result of security threats.
• Understand the definition and activities of social engineering.
• Protect the Information Asset.
• Respond to Incidents.
• Tackle various legal issues related to IT Security.

Duration

1 Day (6.5 hours)

Target Participant

• Division I (ES1)
• Division II (ES2)

Language

English / Malay