|
P228
– PROGRAMME ON ADVANCED I.T. SECURITY (COMPANY
SPECIFIC PROGRAMME FOR L.I.C. OF INDIA) Background Much
of the information, which is stored and transmitted in electronic form, is
very sensitive, strategic or valuable. In our insurance companies, most of
our communication is now through electronic form. To take advantage of the
electronic communication through available global networking, it is needed
to comply with the existing or new security laws and regulations. But
decisions on how much to invest in IT security and control are difficult.
Insurance companies must consider the best ways to offer flexibility to
customers and trading partners, yet ensure security of critical
information and systems for all its users. Insurance
companies need to formulate and establish policies and directives in order
to protect the investment, safeguard the information contained within
these systems, reduce business and legal risks and the most important to
protect the good name of the company. This would require a set of
policies on Information Security, Cyber ethics, email usage and privacy of
business data in these systems. Objectives
After
completing this programme participants will be able to assesses the risks,
both human and non-human, that can affect the insurance company’s information.
Participants will gain an understanding of the required strategies and
technologies necessary for the running of a secure business. Contents
§
BS
7799 /ISO 17799, ISO 27000 Series, ITIL and COBIT Standards §
Network
Information Security §
Web
Application Security §
Business
Continuity & Disaster Recovery §
Procedure
for handling security incidents (IRM) §
Designing
Network perimeter architecture §
Design,
Development, Implementation and Monitoring of InfoSecurity Policies §
Linux
Security §
Security
Technologies: Firewalls,
IDS/IPS, NMS, EMS, VPN, PKI, Biometrics §
Cyber
Laws Participants'
Profile Selected
Manager IT from Divisional and zonal offices , IT officers from
central office, Divisional Info security officers (DISO) , Zonal
Info security officers (ZISO) Duration:
1 Week Date:
I) 29.10.2007 –
03.11.2007 II) 26.11.2007 – 01.12.2007 |
|