tailieunhanh - Course 2830: Designing security for Microsoft networks - Module 4

Module 4 - Analyzing security risks. In this module, you will learn how to determine what resources in your organization require protection and how to prioritize those resources based on their value. You will then develop a risk management plan, based on the MOF risk model, to identify and analyze risks proactively and to determine an appropriate level of protection for each resource. | Module 4: Analyzing Security Risks Overview Introduction to Risk Management Creating a Risk Management Plan Lesson: Introduction to Risk Management Elements of Risk Management Why Risk Management Is Important Common Assets to Protect How to Categorize Assets How to Calculate the Value of Assets Practice: Categorizing Assets Elements of Risk Management Qualitative analysis estimates an asset’s value Example: Importance of the Web site = High Quantitative analysis uses actual financial data Example: Revenue from the Web site = $700,000 per month Risk Management Plan Risk management is the process of identifying, analyzing, and managing risks Why Risk Management Is Important Risk management enables you to: Prioritize security risks Determine the appropriate amount of security Justify costs Document all potential security issues Create metrics Common Assets to Protect Type Examples Hardware Desktop and portable computers Routers and switches Backup media Software Software installation CDs Operating system images Custom software code Documentation Security policies and procedures Network diagrams and building plans Data Trade secrets Employee information Customer information How to Categorize Assets Secret Confidential Private Public Web Site Customer Information Trade Secrets Intranet Type Examples What is at risk? Public Public Web sites Press releases Trust Sales Private Intranet Web site E-mail with partners Proprietary information Partnerships Confidential Payroll information Customer information Revenue Internal operations Secret Trade secrets Products in development Intellectual property Closely-held business plans Quantify the asset’s overall value to your organization Calculate the direct financial impact of losing the asset Calculate the indirect business impact of losing the asset How to Calculate the Value of Assets To determine the value of an asset: Asset Value of asset Exposure factor Direct impact Indirect impact E-commerce Web site $17,520,000 per | Module 4: Analyzing Security Risks Overview Introduction to Risk Management Creating a Risk Management Plan Lesson: Introduction to Risk Management Elements of Risk Management Why Risk Management Is Important Common Assets to Protect How to Categorize Assets How to Calculate the Value of Assets Practice: Categorizing Assets Elements of Risk Management Qualitative analysis estimates an asset’s value Example: Importance of the Web site = High Quantitative analysis uses actual financial data Example: Revenue from the Web site = $700,000 per month Risk Management Plan Risk management is the process of identifying, analyzing, and managing risks Why Risk Management Is Important Risk management enables you to: Prioritize security risks Determine the appropriate amount of security Justify costs Document all potential security issues Create metrics Common Assets to Protect Type Examples Hardware Desktop and portable computers Routers and switches Backup media Software Software .

• Quản trị mạng
• Designing security
• Microsoft networks
• Network security
• Security design
• Analyzing security risks
• Risk management
• Security policies
• Designing network security
• Security design for accounts
• Account security
• Security design for authentication
• Authentication security
• Security threats
• Network attacks
• Physical resources
• Security design for computers
• Analyzing risks to computers
• Security design for data
• Securing data
• Security incidents
• Incident response procedure
• Acceptable use policy
• Security policy checklist
• Manage security
• Operations framework
• Designing policies
• Managing networks
• Network management policy
• Network perimeters
• Perimeter security
• Data transmission
• Securing data transmission
• Random Oracle model
• A Paradigm for Designing Efficient Protocols
• Designing Efficient Protocols
• Random oracle paradigm
• Chosen Cipher text Security
• A digital signature scheme
• Advanced network security
• An toàn mạng nâng cao
• Designing for an Open Access Point
• Wireless Network Vulnerabilities
• Wireless Hacking Tools
• Wireless Network
• Internetworking
• manage network
• Network Protocols
• Security communication
• network systems
• network equipment
• network operators
• computer network
• information technology
• international certification
• network cisco
• cisco exam
• management network
• công nghệ thông tin
• tin học
• internet
• microsoft office
• công nghệ thông tin
• tin học
• mạng
• web
• quản trị mạng