Detailed Seminar Outlines |
|
SEC03E (S51) Threat and Risk Assessment (TRA): Practical Risk Management in a Hostile Environment
Expert advice, program design, content and instruction for security courses given by the Communications Security Establishment (CSE).
Language(s):
English and French
Description:
Assessing threats and vulnerabilities that can jeopardize crucial IT assets and recommending appropriate risk management strategies can be a daunting task without a systematic approach to data collection and analysis. This course presents a comprehensive TRA methodology applicable to any security situation, with practical examples and exercises relevant to an IT environment.
Outline:
- Set the scope of the assessment
- Select the assessment team
- Identify assets and assign asset values
- Assess potential threats
- Examine existing and proposed safeguards
- Determine remaining vulnerabilities
- Calculate residual risk
- Recommend an appropriate response
- Consider other risk management options
Prerequisites:
Knowledge Level - Advanced
Recommended preparation: SEC02 (S50) - Certification and Accreditation (C&A): Achieving Confidence and Accountability, or equivalent.
Target Audience:
Business planners and project managers as well as IT and IT security specialists.
Instructor:
John F. Clayton
John Clayton joined the Royal Canadian Air Force in 1963. After graduating from the Royal Military College, he trained as a computer programmer and systems analyst.
Four years later, he transferred to the Security Branch, where he served in a variety of security, counterintelligence and policing positions across Canada. In his last assignment, he was the Departmental Automated Data Processing (ADP) Security Authority at National Defence Headquarters.
Since leaving the Canadian Forces in 1989, he has worked with five departments or agencies in the Public Service: the Ministry of the Solicitor General, the Department of Foreign Affairs and International Trade, Public Works and Government Services Canada, the Treasury Board Secretariat and the Communications Security Establishment. During this time, he has performed varied functions as a Policy Analyst, Project Security Director, Departmental COMSEC Authority and Departmental Security Officer.
Schedule
(3 days)
English
|
|
|
|
French
|
|
November 21-23, 2006 |
November 20, 2006 |
Time:
8:30 am to 4:30 pm
Location:
Place du Portage, Phase III
Tower B - 1E
11 Laurier St.
Gatineau, Quebec
Room 811
Cost:
$950
|