The first step in developing a solid IT security project plan is to
define the problem. We can easily state that the problem is “our
networks are not secure or that there are assets in the organization
that need to be protected from intentional and unintentional attacks.”
Those statements are true on the macro level, meaning that these general
statements apply to almost every organization (and computer) in the
world. However, every company is different and every organization has
its own unique set of security vulnerabilities to consider. Applying a
one-size-fits-all approach to network security will not work.
An effective way to approach IT security is to create a corporate security plan that includes the individual focus areas of security (e.g., infrastructure, wireless). Breaking down each of the segments into smaller, individual focus areas allows you to manage each aspect of security better. Another challenge you will encounter is that there are many areas that overlap (i.e., does physical access fall under operational security, infrastructure security, or general security?). Creating a corporate IT security plan and individual plans gives you the opportunity to review your overall security project plan to ensure that all critical security elements are addressed.
EC-Council’s program on Project Management in IT Security is a highly interactive 3-day class designed to teach Information Technology Security Professionals real time implementation of project management practices in IT security planning. It comprehensively covers corporate security project plan components, costs involved in security, basis for a successful project, limitations of a Project, corporate strategy and IT security and the influence of corporate culture and policies on IT security.
Students will learn to identify different issues arising during an organization-wide security planning and how to avoid and eliminate them.
There are no prerequisites.
3 days (9:00 – 5:00)
After successfully completing this course, the student will be able to: