October 1, 2007

Course Title

Enterprise Security Management

Course Description

Students will understand the principles of risk management, security architectures, incident handling, disaster recovery, and secure systems administration.

Contact

Carrie DeMuth
405-743-5426
cdemu@okcareertech.org

OCAS Codes	OHLAP Credit	Course Length	Prerequisites
8496	Yes	90 Hours	Network Security

Knowledge and Skills

Develop and test business continuity plans for disaster recovery.
Perform a risk analysis.
Apply various techniques to minimize risks.
Create a security policy.
Examine common criteria, a federal government and internationally mandated system for secure hardware and software used in the federal government.
Identify the certification and accreditation process of information systems as outlined for the federal government.
Identify the process of biometrics, their accuracy and their application.
Determine the characteristics of common biometrics, and examine methods of compromising biometric systems.
Implement authentication solutions, such as tokens and biometrics.

Accountability Measures, Assessments, or Evaluation Procedures

SCNA - Security Certified Network Architect - http://www.securitycertified.net/SCNA_certifications.htm

CIW - Certified Internet Web Professional - http://www.ciwcertified.com/

Cisco - http://cisco.netacad.net

CompTIA - http://certification.comptia.org/

Brainbench - http://www.okcareertech.org/certify

Industry Alignments

Security Certified Network Architect (SCNA) - The Solution Exam (TSE)
Cyber Security Education Consortium End-of-Course Exam
CompTIA Server+ or Security+
Brainbench (2 exams required)

Check Point Firewall Administration
ITAA Information Security Awareness

Curriculum Resources

Security Certified Program (SCP) curriculum: Hardening the Infrastructure; Warren Peterson, Shrinath Tandur. ISBN - 0-7580-5588-9

Network Defense and Countermeasures; Warren Peterson, Shrinath Tandur. ISBN - 0-7580-6631-7

Advanced Security Implementations; Warren Peterson, Uday O. Ali Pabrai. ISBN: 0-7580-6999-5

Enterprise Security Solutions; Warren Peterson, Uday O. Ali Pabrai. ISBN - 0-7580-7481-6

References:

Guide to Disaster Recovery, 1st Edition-Michael Erbschloe. ISBN: 0-619-13122-5

OMB Circular A-130
NIST Special Publication 800-37, Guide for the Security Certification and Accreditation of Federal Information Systems, May 2004
NIST Special Publication 800-18, Guide for Developing Security Plans for Information Technology Systems, December 1998.
NIST Special Publication 800-26, Security Self-Assessment Guide for Information Technology Systems, November 2001.
NIST Special Publication 800-30, Risk Management Guide for Information Technology Systems, January 2002.
NIST Special Publication 800-34, Contingency Planning Guide for Information Technology Systems, June 2002.

NIST Special Publication 800-47, Security Guide for Interconnecting Information Technology Systems, September 2002.

NIST Special Publication 800-50, Building an Information Technology Security Awareness and Training Program, October 2003.
NIST Special Publication 800-64, Security Considerations in the Information System Development Life Cycle, October 2003.
NIST Special Publication 800-53, Recommended Security Controls for Federal Information Systems (Initial public draft), October 2003.
NIST Special Publication 800-60, Guide for Mapping Information and Information Types to Security Objectives and Risk Levels (Second public draft), March 2004.
NIST Special Publication 800-61, Computer Security Incident Handling Guide, January 2004.
Career Cluster Resources for Information Technology - http://www.careerclusters.org/resources/ClusterDocuments/itdocuments/ITFinal.pdf

Course Development Guide