کاریارارقام

            Information Security Governance

                Business Goals and Objectives

                Roles and Responsibilities of senior management

                Roles and Responsibilities in Information security

                Business model for information security

                Information security Governance metrics

                Developing an Information Security Metrics

                Information security strategy objective

                Determine current state of security

                Strategy Resources

                Enterprise information security Architecture

                Compliance Enforcement

                Business Impact Assessment

                Strategy constraints

                Action plan to Implement strategy

          Information Risk Management

              Risk management strategy

              Effective Information security risk Analysis

              Information security risk management

              Information resources validation

              Recovery time objectives

              Security control baselines

        Information Security Program Development and Management

             Information Security Program Concept and Objectives

             Scope and charter of an Information Security Program

             Information Security management framework

             Defining an information security program Road Map

             Information security Infrastructure and architecture

             Security program management and administrative activities

             Security program services and operational activates

             Information liaison responsibility

             Due Diligence

             Controls and counter measures

             Security Program Metrics and Monitoring

       Incident Management and Response

            Incident management Procedures ,organization, Resources

            Incident management Objectives

            Incident management metrics and Indicators

            Current state of Incident response capabilities

            Developing an Incident response plan

            Business continuity and disaster recovery Procedures

            Testing Incident Response plan

            Post incident Activities and investigation