IS372

Evaluate the risk management process.

Analyze an audit trail and identify potential security risks.

Apply both quantitative and qualitative risk assessment techniques to security log data.

Develop an IT security plan for an organization.

Use security tools in an ethical and legal manner.

Evaluate the purpose of the various personnel involved in the risk assessment process.

Identify strengths and weaknesses in contingency and disaster recovery plans.

Audit security policies, such as network, host, software, physical, administrative, and encryption.