Jul 30, 2021  
Loyola Marymount University Bulletin 2018-2019 
    
Loyola Marymount University Bulletin 2018-2019 [ARCHIVED CATALOG]

SELP 664 Cybersecurity Risk Management, Governance and Compliance for Enterprises


3 semester hours

This course will focus on incorporating an enterprise approach and using sound systems engineering principles in implementing cybersecurity in today's modern highly complex and interconnected information systems. This course will provide introductions to the various cybersecurity frameworks, standards, and best practices (NIST, COBIT, ISO/IEC, NERC, HIPAA, CIS Critical Security Controls) in use by both government and commercial sectors. We will explore the benefits and limitations of each and provide detailed instruction on developing a cybersecurity risk management program that would be incorporated into an organization's overall risk profile. Focus of this course will also be placed on reporting cybersecurity metrics and incidents to the board of trustees/directors, the C-suite and other executive leadership. Emphasis will be placed on utilizing the proper business acumen to effectively communicate complex technical cuber problems and challenges. Legal and privacy considerations will be addressed as well as forensics, disaster recovery and incident response planning and management, and security education. The course will cover the importance of third party management and how service level agreements play an integral part in managing risk at the enterprise level. Tabletop exercises, guest speakers and case studies will augment lecture materials on key concepts and principles.

Prerequisite: SELP 660  (may be taken concurrently).