Security Controls and Control Frameworks

Selecting appropriate controls to protect information is an important responsibility of the information security professional. This course will assist you in addressing risk and compliance though development of a security control framework.
Course info
Level
Intermediate
Updated
Jun 7, 2018
Duration
59m
Table of contents
Description
Course info
Level
Intermediate
Updated
Jun 7, 2018
Duration
59m
Description

It can be challenging to evaluate and select the best controls for an organization. Through this course, Security Controls and Control Frameworks, you will gain an understanding of the risk associated with the development of a security control framework, and how to address it. You will first learn the various types of controls and the factors used in establishing an effective security infrastructure. Next, you will examine the strengths of various types of controls including managerial, technical, and environmental controls that can be deployed to prevent and react to security incidents. Finally, you will examine how to test and evaluate the effectiveness of controls in relation to risk and compliance. When you're finished with this course, you will have the skills and knowledge needed to be an effective contributor to the design of secure information systems and business processes.

About the author
About the author

Kevin Henry is a passionate mentor and educator in the fields of information security and audit. Mixing experience with knowledge, Kevin delivers effective training programs for companies and individuals worldwide. A frequent speaker at prestigious conferences, Kevin is known for a clear understandable manner of imparting practical information and explaining difficult topics.

More from the author
Malicious Code and Threats
Intermediate
1h 25m
Jun 6, 2019
Security Control Assessment
Intermediate
2h 37m
May 24, 2019
Security Operations
Intermediate
2h 19m
Mar 27, 2019
More courses by Kevin Henry
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone. My name is Kevin Henry, an information security consultant and educator and holder of several certifications in information security management, for example, the CISSP, CISM, and CCSP. I look forward to sharing knowledge and experience with you. Welcome to my course on security controls and control frameworks. This course will help you gain an essential understanding of how to protect information and information systems through the design, development, and maintenance of security controls. Security controls are designed to address risk, and organizations depend on effective controls that will protect, but not hinder business operations. This course addresses the topics of types and categories of controls, control design, and control assessment. By the end of this course, you'll be knowledgeable with security controls and a selection of control frameworks. I hope you'll join me on this journey to learn about the core concepts of information security controls and how this can help you in your role and career through this course at Pluralsight.