It can be challenging to evaluate and select the best controls for an organization. Through this course, Security Controls and Control Frameworks, you will gain an understanding of the risk associated with the development of a security control framework, and how to address it. You will first learn the various types of controls and the factors used in establishing an effective security infrastructure. Next, you will examine the strengths of various types of controls including managerial, technical, and environmental controls that can be deployed to prevent and react to security incidents. Finally, you will examine how to test and evaluate the effectiveness of controls in relation to risk and compliance. When you're finished with this course, you will have the skills and knowledge needed to be an effective contributor to the design of secure information systems and business processes.
- Types of Controls
- Control Selection Criteria
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.