The use of computers and the Internet is growing each day. Companies of every size depend on computers to conduct their daily business. Computers are used to store large amounts of information, much of which is personal and confidential. Individuals count on the companies they deal with to protect any personal or confidential data they provide about themselves. The companies also need to protect their own intellectual property from loss or theft. Add to this the fact that computer crime is growing, and is now moved from the realm of kiddy hackers out to prove their computer prowess to organized criminals out for financial gain. This puts us in an environment where the risk of theft of confidential information from computers is high, and the threat of computer fraud is always present. The sophistication of the attacks is also increasing at an alarming rate, making the need for strong security countermeasures more critical than ever. It is a constant battle between those trying to protect computing infrastructures and those trying to break in.
Date: Fall 2012/Winter 2013
Time: 6:00 pm – 9:00 pm
Location: 688 Sherbrooke Street West, Room to be confirmed
Seminar Fee: $245.00 CAD plus applicable taxes
Current McGill students and McGill alumni will receive a 20% discount off the Seminar fee. Click here to register
Course Description
This workshop provides an overview of various components required in a complete computer security framework: Security Policies, Standards and Baseline documentation, Security Awareness programs, Security Risk Analysis, Security Architectures, Preventive and Detective controls to mitigate risk. Participants will be able to plan the implementation of a complete computer security framework.
Objectives
After taking this workshop participants will be able to plan the implementation of a complete computer security framework with a good understanding of the tasks involved and the effort required. They will also have tools to help them get started in the development of sound security policies, standards and baselines to lay the foundation of their security program.
Course Outline
- Security Policy and Standards
- Security Legislation and Regulations
- Security Awareness programs
- Security Risk Management
- Security Strategy and Planning
- Security Architecture
- Security Technologies
- Preventive and Detective controls such as:
- Identity and Access Management
- Vulnerability Management
- Security Information Event Management
- Operations Security Management
- Physical Security
- Incident Response
- Data Encryption
- Business Continuity and Disaster Recovery Planning
- Secure Software Development
- Intrusion testing
- Employee background verification
- Investigations and Forensic Analysis
Who Should Attend
Professionals interested in developing comprehensive security program to protect their business. This would include Chief Information Officers, Sr. Managers or Technicians with responsibility to secure their computing infrastructure.
Lecturer
Robert Boyer, FLMI/M, CISSP, Lead Architect, Security Services, Standard Life
During his 36 year career, Bob has held many positions within and outside of Information Technology, including Sr. Investment Administration Officer in charge of investment accounting and reporting, System Officer in charge of corporate systems development & maintenance, Planning Officer within computer operations, Manager, Computer Security, and most recently his current title. Bob is responsible for Computer Security Architecture and Planning, Computer Security Policies and Disaster Recovery Planning. Over the past 22 years he has been building Security and Disaster Recovery programs with the aim of ensuring the protection of confidential and personal data as well as the continuity of business services.
One of Bob’s most recent projects was the acquisition, design and implementation of ArcSight as a global Security Information Event Management solution for a major Financial Services institution. This included implementing a Security Operations Center to monitor security events.
Bob is a Certified Information Systems Security Specialist (CISSP), a Master Fellow in the Life Management Institute (FLMI/M), and has completed a Certificate in Management from McGill University.
How to register
Cancellation Policy
All cancellation & substitution requests must be made in writing. The following Cancellation Policy applies:
Up to 14 days prior to the start date: Full refund
7 days prior to the start date: Refund minus $100 Cancellation fee
Within 7 days of the start date: No Refund, however suitable participation substitution will be permitted
If no notice is given prior to the start of the event(s) and you fail to attend, you will be liable for the full course fee.
McGill SCS reserves the right to cancel an event up to 5 days prior to its start.
Contact Information
Telephone: 514-398-5454
E-mail: pd [dot] conted [at] mcgill [dot] ca
