The concept of risk is central to cyber security and developing an understanding of the exposure of the system to different threats enables security efforts to be prioritized. By determining risk and exposure, security can be managed and cost-benefit decisions can be made. This course explores the principles and tools behind risk analysis for security, providing practical experience on a realistic case study and introduces the fundamentals of risk and risk management in a cyber security context focusing on risk, recovery and response.

Students will:

· Understand Risk Management Fundamentals

· Threats, Vulnerabilities, and Exploits

· Compliance

· Develop a Risk Management Plan

· Define various Risk Assessment Approaches

· Perform a Risk Assessment

· Identify Assets and Activities to be Protected

· Identify and Analyze Threats, Vulnerabilities, and Exploits

· Identify and Analyze Risk Mitigation Security Controls

· Planning Risk Mitigation

· Mitigate Risk with a Business Impact Analysis , Business Continuity Plan and a Computer Incident Response