CompTIA Security+ (SY0-701) Cert Prep: 5 Security Program Management and Oversight

Prepare for the Security Program Management and Oversight domain of the CompTIA Security+ (SY0-701) certification exam.

Introduction

• Security program management
• Study resources

1. Security Policies

• Security policy framework
• Security policies
• Security standards
• Security procedures
• Policy monitoring and revision
• Policy considerations

2. Security Governance

• Security governance structures
• Data security roles

3. Risk Analysis

• Risk assessment
• Quantitative risk assessment
• Business impact analysis
• Risk treatment options
• Risk visibility and reporting
• Ongoing risk assessment
• Security metrics

4. Supply Chain Risk

• Managing vendor relationships
• Vendor agreements
• Vendor information management

5. Privacy and Compliance

• Legal and compliance risks
• Compliance monitoring and reporting

6. Auditing

• Audits and assessments

Conclusion

• Continuing your studies