Course Course Summary Section 1 Content Section 1 Content Left Section 1 Content Right Credit Type: Course ACE ID: TEEX-0286 Organization's ID: AWR177 Organization: Texas A&M Engineering Extension Service Location: Online Length: 13 hours Dates Offered: 11/1/2022 - 10/31/2025 12/1/2018 - 10/31/2022 Credit Recommendation & Competencies Section 2 Content Section 2 Content Left Section 2 Content Right Level Credits (SH) Subject Upper-Division Baccalaureate 1 Business, Information Risk Management, or Introduction to Information Security Students who request a credit recommendation for TEEX-0286 cannot receive a credit recommendation for TEEX-0252. Description Section 3 Content Section 3 Content Left Section 3 Content Right Objective: The course objective is to provide an introduction to the fundamentals of risk management in the IT and information management arena. This course includes the following topics: information assets, identifying risks, and management processes highlighting best principles and practices. It will provide training in information risk-related tools and technologies (such as asset evaluation, business impact analysis, risk identification, risk quantification, risk response, security policies and compliance) for better understanding of potential threats and vulnerabilities in business online, and learning to adopt levels of security measures and best practices. Learning Outcomes: Identify key concepts of information security risk management Examine and evaluate IT assets for a business impact analysis Explain how to use risk controls to mitigate or eliminate identified risks Develop and apply organizational security policies to manage information risks Apply risk and hazard frameworks to common cyber threats Quantify cyber risks based on vulnerabilities, impact and likelihood General Topics: Risk management principles and practices Hazards and threats Information security risk management ISRM stakeholders Risk management frameworks ISRM frameworks ISRM processes Risk management context IT systems components Asset identification and inventory Asset valuation and criticality Loss impact and business impact analysis Goals of risk identification Hazard context and specification Hazard and threat identification frameworks Risk identification and common cyber threats Risk symptoms and root causes Project risk Goal of risk quantification Quantification methods Risk likelihood, vulnerability, and impact Risk prioritization, tolerance, and response Goal of risk control Risk response and limitation Risk controls and practices Cyber security controls and practices Security and risk management policy Cyber security compliance Business continuity Instruction & Assessment Section 4 Content Section 4 Content Left Section 4 Content Right Instructional Strategies: Computer Based Training Methods of Assessment: Case Studies Examinations Quizzes Minimum Passing Score: 70% Supplemental Materials Section 5 Content Section 5 Content Left Section 5 Content Right Section 6 Content Section 6 Content Left Section 6 Content Right Button Content Rail Content 1 Other offerings from Texas A&M Engineering Extension Service Basic Criminal Investigation (TEEX-0292) Basic Criminal Investigation Online (TEEX-0299) Basic Property Technician (BPT) Online (TEEX-0294) Bloodstain Pattern Analysis (BPA) (TEEX-0290) Courtroom Testimony Practical Applications (TEEX-0304) Crime Scene Investigation (TEEX-0293) Cyber Ethics (TEEX-0278) Cyber Incident Analysis and Response (TEEX-0284) Cyber Security for Business Professionals (TEEX-0252) Cyber Security for Everyone (TEEX-0250) View All Courses Page Content