The course objective is to teach mid-level security practitioners how to engage all functional levels within the enterprise to deliver information system security, among other things, plans and policies, enterprise roles, security metrics, risk management, standards and regulations, physical security, and business continuity.