0% found this document useful (0 votes)

53 views2 pages

15EC29L - Syllabus and Reference

The document outlines the curriculum for a one-credit course on Cyber Security: Governance, Risk and Compliance, conducted by TCS, referencing the 'All in One CISSP Exam Guide' by Shon Harris. It includes chapters on Information Security Governance, Business Continuity, Disaster Recovery Planning, and Legal Compliance, detailing various security principles, frameworks, and risk management strategies. Additionally, it provides descriptive questions and multiple-choice questions for assessment purposes.

Uploaded by

GokulCj Grove

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

53 views2 pages

15EC29L - Syllabus and Reference

Uploaded by

GokulCj Grove

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

15EC29L - Cyber Security: Governance,

Risk and Compliance (One credit course)

Conducted by TCS

Book:

ALL IN ONE CISSP EXAM GUIDE

Sixth Edition

Shon Harris

Chapter 2 - Information Security Governance and Risk Management . . . . . . . . 21

Fundamental Principles of Security . . . . . . . . . . . . . . . . . . . . . . . . . 22

Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Integrity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Confidentiality . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

Balanced Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

Security Definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Control Types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28

Security Frameworks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34

ISO/IEC 27000 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Enterprise Architecture Development . . . . . . . . . . . . . . . . . . . 41

Security Controls Development . . . . . . . . . . . . . . . . . . . . . . . 55

COSO . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

Process Management Development . . . . . . . . . . . . . . . . . . . . 60

Functionality vs. Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

Security Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69

Risk Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70

Who Really Understands Risk Management? . . . . . . . . . . . . . 71

Information Risk Management Policy . . . . . . . . . . . . . . . . . . 72

The Risk Management Team . . . . . . . . . . . . . . . . . . . . . . . . . . 73

Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137

Quick Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138

Questions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141

Answers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 150
Descriptive Questions: Page No. 21 to 73

MCQs: Page No. 138 to 158

Chapter 8 Business Continuity and Disaster Recovery Planning . . . . . . . . . . . 885

Business Continuity and Disaster Recovery . . . . . . . . . . . . . . . . . . . 887

Standards and Best Practices . . . . . . . . . . . . . . . . . . . . . . . . . 890

Making BCM Part of the Enterprise Security Program . . . . . . 893

Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 961

Quick Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 961

Questions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 964

Answers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 972

Descriptive Questions: Page No. 885 to 893

MCQs: Page No. 961 to 977

Chapter 9 Legal, Regulations, Investigations, and Compliance . . . . . . . . . . . . . 979

The Many Facets of Cyberlaw . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 980

The Crux of Computer Crime Laws . . . . . . . . . . . . . . . . . . . . . . . . . 981

Complexities in Cybercrime . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 983

Electronic Assets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 985

The Evolution of Attacks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 986

International Issues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 990

Compliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1030

Investigations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1032

Incident Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1033

Incident Response Procedures . . . . . . . . . . . . . . . . . . . . . . . . 1037

Computer Forensics and Proper Collection of Evidence . . . . 1042

Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1065

Quick Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1065

Questions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1069

Answers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1076

Descriptive Questions: Page No. 979 to 989 & 1030 to 1040

MCQs: Page No. 1065 to 1079

Cyber Security Cheat Sheet-2
No ratings yet
Cyber Security Cheat Sheet-2
27 pages
Cyber Security Cheat Sheet-1
No ratings yet
Cyber Security Cheat Sheet-1
24 pages
Loio EN
No ratings yet
Loio EN
558 pages
Microsoft Azure Security Center
75% (4)
Microsoft Azure Security Center
193 pages
Principles of Incident Response and Disaster Recovery 2nd Edition - Ebook PDF Version Download
No ratings yet
Principles of Incident Response and Disaster Recovery 2nd Edition - Ebook PDF Version Download
86 pages
FMXX I Xxii
No ratings yet
FMXX I Xxii
22 pages
1966952
No ratings yet
1966952
81 pages
Network Defense
No ratings yet
Network Defense
546 pages
CyberEdge 2022 CDR Report
No ratings yet
CyberEdge 2022 CDR Report
67 pages
CyberEdge 2021 CDR Report v10 ISC2 Edition
No ratings yet
CyberEdge 2021 CDR Report v10 ISC2 Edition
68 pages
2023 CDR Report Final2 Isc2
No ratings yet
2023 CDR Report Final2 Isc2
66 pages
Key Compliance Requirements for SOX, GLBA, HIPAA, ISO
No ratings yet
Key Compliance Requirements for SOX, GLBA, HIPAA, ISO
13 pages
Computer Security Fundamentals (3rd Edition) PDF
No ratings yet
Computer Security Fundamentals (3rd Edition) PDF
10 pages
CISSP InstructorEdition
100% (13)
CISSP InstructorEdition
819 pages
Information Security Harmonization
No ratings yet
Information Security Harmonization
157 pages
WikipediaHandbookofComputerSecurityandDigitalForensics2015 PartI PDF
No ratings yet
WikipediaHandbookofComputerSecurityandDigitalForensics2015 PartI PDF
212 pages
CCISO Certified Chief Information Security Officer All-In-One Exam Guide
100% (4)
CCISO Certified Chief Information Security Officer All-In-One Exam Guide
862 pages
???? ??????????? ??????? ?????
No ratings yet
???? ??????????? ??????? ?????
67 pages
Chapter - 8 - Security Management Models
No ratings yet
Chapter - 8 - Security Management Models
65 pages
Detailed Mapping Vormetric Data Security Platform Controls To Nist 800 53 Requirements PDF 1 W 1131
No ratings yet
Detailed Mapping Vormetric Data Security Platform Controls To Nist 800 53 Requirements PDF 1 W 1131
12 pages
Your Guide For Selecting The Right Framework Nar RB - 990748
No ratings yet
Your Guide For Selecting The Right Framework Nar RB - 990748
15 pages
SEC+ 601 Slides
No ratings yet
SEC+ 601 Slides
416 pages
Ironclad Security Framework Guide
No ratings yet
Ironclad Security Framework Guide
23 pages
Security Guide For IBM I V6.1: Front Cover
No ratings yet
Security Guide For IBM I V6.1: Front Cover
426 pages
800 14 PDF
No ratings yet
800 14 PDF
63 pages
Policy
No ratings yet
Policy
224 pages
Cybersecurity Compliance Frameworks
No ratings yet
Cybersecurity Compliance Frameworks
32 pages
PDF Sec Guide Ehsm 6.0 en
No ratings yet
PDF Sec Guide Ehsm 6.0 en
70 pages
Cyber Security
No ratings yet
Cyber Security
84 pages
Course Book
No ratings yet
Course Book
112 pages
Advanced Network Security Strategies
No ratings yet
Advanced Network Security Strategies
18 pages
Akamai Information Security Management System Overview: Securing The Cloud
No ratings yet
Akamai Information Security Management System Overview: Securing The Cloud
12 pages
An Introduction To Computer Security (CuPpY)
No ratings yet
An Introduction To Computer Security (CuPpY)
290 pages
Directive Principles of State Policy
No ratings yet
Directive Principles of State Policy
15 pages
Siddharth Group of Institutions:: Puttur: Unit - I
No ratings yet
Siddharth Group of Institutions:: Puttur: Unit - I
7 pages
Yye (2021-2022) Question Paper 1
No ratings yet
Yye (2021-2022) Question Paper 1
34 pages
19CS61C
No ratings yet
19CS61C
2 pages
Eligibility Criteria: Focused Areas
No ratings yet
Eligibility Criteria: Focused Areas
2 pages
Cse Ajax
No ratings yet
Cse Ajax
20 pages
Creative Methods for Product Design
No ratings yet
Creative Methods for Product Design
15 pages
Network Cabling
No ratings yet
Network Cabling
45 pages
U - III Propositional Logic
No ratings yet
U - III Propositional Logic
37 pages
Constitution of Kuwait: BY: Gokulakrishnan M 1912058
No ratings yet
Constitution of Kuwait: BY: Gokulakrishnan M 1912058
17 pages
Department of Civil Engineering GE8076 - Professional Ethics in Engineering Unit IV - MCQ Bank
No ratings yet
Department of Civil Engineering GE8076 - Professional Ethics in Engineering Unit IV - MCQ Bank
6 pages
Final Accounts Format Guide
100% (1)
Final Accounts Format Guide
2 pages
Quashing FIR in Madhya Pradesh Rape Case
No ratings yet
Quashing FIR in Madhya Pradesh Rape Case
11 pages
Equality - Psir Optional - Sunya Ias
No ratings yet
Equality - Psir Optional - Sunya Ias
16 pages
20bal013 20bal059 20bal060 20bal062
No ratings yet
20bal013 20bal059 20bal060 20bal062
19 pages
Juvenile
No ratings yet
Juvenile
6 pages
2011 - UK HJS - Mains - Paper (Paper-1)
No ratings yet
2011 - UK HJS - Mains - Paper (Paper-1)
4 pages
Gym Equipment Purchase Deal
No ratings yet
Gym Equipment Purchase Deal
5 pages
2021-05-06 - USDA Inspection Report - Jerry L Holly
No ratings yet
2021-05-06 - USDA Inspection Report - Jerry L Holly
2 pages
Succession by Dean Navarro
100% (2)
Succession by Dean Navarro
14 pages
Articles 1156 1169
No ratings yet
Articles 1156 1169
3 pages
Chap 3-Basic Political Concepts
No ratings yet
Chap 3-Basic Political Concepts
15 pages
TVL ICT IllustrationNCII Q1Module2
100% (1)
TVL ICT IllustrationNCII Q1Module2
12 pages
Mob Justice Argument Essay
No ratings yet
Mob Justice Argument Essay
2 pages
People v. Maceren
No ratings yet
People v. Maceren
1 page
Civil Procedure & ADR in Uganda
No ratings yet
Civil Procedure & ADR in Uganda
113 pages
The Labour Proclamation No
No ratings yet
The Labour Proclamation No
15 pages
Anti-Terrorism Act of 2020 Overview
No ratings yet
Anti-Terrorism Act of 2020 Overview
27 pages
Understanding Aggravating Circumstances
No ratings yet
Understanding Aggravating Circumstances
11 pages
Jamaica Miles v. Saratoga Springs
No ratings yet
Jamaica Miles v. Saratoga Springs
24 pages
Test Bank For Introduction To Criminal Justice 9th Edition
No ratings yet
Test Bank For Introduction To Criminal Justice 9th Edition
3 pages
Protection Against Domestic Violence Law 2007
No ratings yet
Protection Against Domestic Violence Law 2007
15 pages
Overview of Civil Code Article 1156
No ratings yet
Overview of Civil Code Article 1156
4 pages
Elma Lawson V Sherba Dick
No ratings yet
Elma Lawson V Sherba Dick
10 pages
Customary Law and Local Courts Act
No ratings yet
Customary Law and Local Courts Act
14 pages
Surviving Prison As A Sex Offender
No ratings yet
Surviving Prison As A Sex Offender
9 pages
Manila Bulletin Vs Domingo
No ratings yet
Manila Bulletin Vs Domingo
21 pages
Legal Aspects of Healthcare Administration
No ratings yet
Legal Aspects of Healthcare Administration
4 pages
Questions (Qatar v. Bahrain) : View This Case and Other Resources at
No ratings yet
Questions (Qatar v. Bahrain) : View This Case and Other Resources at
2 pages
Detailed Analysis of Anurag Vijaykumar Goel v. State of Maharashtra & Anr. (2025 INSC 926)
No ratings yet
Detailed Analysis of Anurag Vijaykumar Goel v. State of Maharashtra & Anr. (2025 INSC 926)
5 pages

15EC29L - Syllabus and Reference

Uploaded by

15EC29L - Syllabus and Reference

Uploaded by

15EC29L - Cyber Security: Governance,

Risk and Compliance (One credit course)

ALL IN ONE CISSP EXAM GUIDE

Chapter 2 - Information Security Governance and Risk Management . . . . . . . . 21

Fundamental Principles of Security . . . . . . . . . . . . . . . . . . . . . . . . . 22

ISO/IEC 27000 Series . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Enterprise Architecture Development . . . . . . . . . . . . . . . . . . . 41

Security Controls Development . . . . . . . . . . . . . . . . . . . . . . . 55

Process Management Development . . . . . . . . . . . . . . . . . . . . 60

Functionality vs. Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

Who Really Understands Risk Management? . . . . . . . . . . . . . 71

Information Risk Management Policy . . . . . . . . . . . . . . . . . . 72

The Risk Management Team . . . . . . . . . . . . . . . . . . . . . . . . . . 73

Quick Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138

MCQs: Page No. 138 to 158

Chapter 8 Business Continuity and Disaster Recovery Planning . . . . . . . . . . . 885

Business Continuity and Disaster Recovery . . . . . . . . . . . . . . . . . . . 887

Standards and Best Practices . . . . . . . . . . . . . . . . . . . . . . . . . 890

Making BCM Part of the Enterprise Security Program . . . . . . 893

Quick Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 961

Descriptive Questions: Page No. 885 to 893

MCQs: Page No. 961 to 977

Chapter 9 Legal, Regulations, Investigations, and Compliance . . . . . . . . . . . . . 979

The Many Facets of Cyberlaw . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 980

The Crux of Computer Crime Laws . . . . . . . . . . . . . . . . . . . . . . . . . 981

Complexities in Cybercrime . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 983

Electronic Assets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 985

The Evolution of Attacks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 986

International Issues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 990

Incident Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1033

Incident Response Procedures . . . . . . . . . . . . . . . . . . . . . . . . 1037

Computer Forensics and Proper Collection of Evidence . . . . 1042

Quick Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1065

Descriptive Questions: Page No. 979 to 989 & 1030 to 1040

MCQs: Page No. 1065 to 1079

You might also like