Architecting Security

ATI Courses Logo

Broaden Your Knowledge & Increase Productivity

Training Rocket Scientists Since 1984

(410) 956-8805
(888) 501-2100

Architecting Security

4-Day Course

$2090 per person

Summary

Managers associated with information systems have a legal responsibility for the security of those information systems deployed in their organizations. This includes protecting the confidentiality, integrity and appropriate availability of information processed by architected systems that make use of that information. The development of these architected systems must apply effective CM, software change control, and release management processes to establish a chain of security custody which gives accreditors justification to authorize operational release of reviewed systems. This four-day course provides a total systems perspective on incorporating security throughout the system lifecycle, from the initial phases of architecting systems through securing data-at-rest and data-in-transit to audits for performance evaluation. A risk-based, cost-benefit approach is presented for selecting controls to protect against identified threats. This approach is also applied for securing the infrastructural and contextual aspects of the architected system including policy guidance as well as behavioral and physical security considerations.

  • The critical concepts of information security.
  • The security systems development life cycle, and gathering the right security requirements.
  • Information security responsibilities in an organization
  • The threats posed to information security and common attacks.
  • CM processes that establish a security chain of custody.
  • Key laws that shape the field of information security.
  • Integrating security into software release management.
  • Management’s role in the development, maintenance, and enforcement of information security policy, standards, practices, procedures, and guidelines.
  • A risk management, cost-benefit approach to fulfilling security responsibilities.
  • A survey of security controls to protect against both external and internal threats.
  • Implementation and change management of information security.

Who Should Attend

  • Federal government managers and project managers are personally responsible for the security of information system in their organization, governed by the statutes and Executive Branch policies
  • Managers and project managers in publicly traded corporations are likewise personally responsible for information security are governed by the Sarbanes-Oxley Act.
  • Staff who need to understand the NIST prepared guidelines for information security should attend this course.
  1. The critical concepts of information security.

  2. The security systems development life cycle, and gathering the right security requirements.

  3. Information security responsibilities in an organization

  4. The threats posed to information security and common attacks.

  5. CM processes that establish a security chain of custody.

  6. Key laws that shape the field of information security.

  7. Integrating security into software release management.

  8. Management’s role in the development, maintenance, and enforcement of information security policy, standards, practices, procedures, and guidelines.

  9. A risk management, cost-benefit approach to fulfilling security responsibilities.

  10. A survey of security controls to protect against both external and internal threats.

  11. Implementation and change management of information security.

Tuition for this four-day course is $2090 at one of our scheduled public courses. Onsite pricing is available. Please call us at 410-956-8805 or send an email to ati@aticourses.com.

Register Now Without Obligation.

Instructor

Dr. George M. Ray Director of Research and Development, BGM Group. Adjunct Professor, CMSC & ENMG Faculty, UMBC. Adjunct Professor, CIS Faculty, Shepherd University . Chief Application Services, United States Judiciary (15 yrs) Senior Architectural Engineer, Microsoft. Dr. Ray has 39 years’ experience as an IT solution developer and Project Manager, including systems development experience with national and international financial institutions, various Federal Reserve Banks, Bureau of Public Debt, and NASDAQ; data warehouse development with national and regional health care providers.

Ray Jeffery

Dr. Jeffrey S. Ray, PMP, CSEP, PE, Esq. CTO, BGM Group. Member of the Graduate Faculty, UMBC). Adjunct Professor, SMC University. Project Manager, Sr. Systems Engineer Northrop Grumman. Dr. Ray has 35 years of project and organizational management, and senior systems engineering experience that includes broad – based problem solving related to the structured acquisition of military and information technology systems. He teaches graduate-level courses in Management, Systems Engineering and Organizational Learning. He is an SME in the systems engineering process, systems architecting, requirements allocation and traceability, and functional analysis and decomposition fields.

Contact this instructor (please mention course name in the subject line)