CSUS College of Continuing Education
 
 


Current Schedule of Classes

Register for Classes

Courses and Programs

Conferences and Training Services

Contract and Corporate Education
My Account

Information Security Leadership Academy

Why take this program?
They’re out there, just waiting for the opportunity to steal sensitive information from company files or to create havoc with your organization’s IT system. The threat comes from employees, and to a lesser degree, from outsiders hacking into your computer system. When an unauthorized user accesses sensitive information, this breach of a critical component of your operation can directly affect organizational function, effectiveness, cash flow and—even more difficult to repair—your reputation. Learn the most current security measures for protecting your business’ information system by participating in the Information Security Leadership Academy.

Through the program, you will learn security measures to ensure that your organization’s information is reliable, available, protected for confidentiality, and responsive to mandates from many levels of government. You’ll gain a broad range of business and technical skills and information, including: developing and enforcing security policies and procedures, implementing security awareness programs, business continuity and disaster recovery plans, information technology, risk management, and applicable industry and governmental compliance issues. You’ll also learn to improve your strategic planning capabilities, management practices, and communication tactics—all which will assist you in fully supporting your organization’s mission and goals.

The California Office of Information Security and Privacy Protection and the College of Engineering & Computer Science and the College of Continuing Education at Sacramento State are working in partnership to deliver the Information Security Leadership Academy Certificate Program.

The Information Security Leadership Academy courses have met Cal EMA-Training Branch approval for use of DHS funds. To confirm that Homeland Security funds can be accessed for this training event, please contact your local training officer or grant representative.

How you'll benefit
Through the Information Security Leadership Academy you'll develop the skill and techniques necessary to:

  • Identify and determine the value of an organization’s information assets.
  • Protect information and information processing assets.
  • Identify vulnerabilities within the information processing infrastructure.
  • Manage threats and incidents affecting information resources.
  • Assure, through policy and policy enforcement, the appropriate use of information resources.
  • Educate employees about their information security and privacy protection responsibilities.

Participants in the Information Security Leadership Academy focus on assessment reports including:

  • A detailed vulnerability or risk assessment on a targeted area (i.e. physical security, network access control, disaster recovery, etc.)
  • An assessment on the current incident response measures and make recommendations for enhancing the process
  • An assessment on the current security awareness program and make recommendations for enhancing the process
  • An assessment (on a current IT project) surrounding the security measures recommended and make recommendations for enhancing the process

Is this the right program for you?
This program is designed for public and private sector security professionals and individuals in the information security field wanting to upgrade their skills and increase their effectiveness.

Program Structure
The Information Security Leadership Academy Certificate Program has a total of six courses for a total of 84 classroom hours and 8.4 Continuing Education Units (CEU's). Pre- and post-program half-day sessions will be held to discuss the class project.

Application Process
To apply for the Information Security Leadership Academy certificate program complete the online application here.

Application Deadlines: Applications are due December 31 for the spring cohort and June 30 for the fall cohort.

Program Schedule
With the exception of the Pre-Program Session and the Panel Presentations, all sessions meet from 8:00 a.m. - 5:00 p.m.

Course Descriptions and Spring Cohort Schedule

Pre-Session Date: February 19, 2010 (Fri., 8:00 a.m. - 12:00 p.m.)

Develop, Implement, and Maintain an Information Security Plan (0.7 CEUs)
This course will provide a discussion of the essentials of information security. Participants discover why developing, implementing and maintaining an information security plan benefits their organization. At the end of this session, participants will be able to do the following:

  • Perform a risk assessment.
  • Identify security requirements.
  • Understand disaster recovery management.
  • Understand incident response notification.
  • Identify how to align the plan with their organization’s strategic plan and core business principles.
Date: February 24, 2010

Policy Essentials: Creation, Deployment, and Enforcement (0.7 CEUs)
This course will cover the essentials of information security policy. Issues such as policy creation, deployment and enforcement will be reviewed. In addition, participants will learn how to effectively present policies to staff and management. At the end of this session, participants will be able to do the following:

  • Understand laws, regulations, statutes and standards.
  • Understand the importance of establishing a governance structure.
  • Obtain staff and leadership buy-in.
  • Write good policies.
  • Navigate labor relations issues.
Date: February 25, 2010

Security System Architecture (0.7 CEUs)
This course allows participants to understand a security system architecture. Additional topics to be explored include designing, implementing and managing security system architecture. At the end of this session, participants will be able to do the following:

  • Control access
  • Plan for physical security
  • Select appropriate cryptography
  • Plan for business continuity
  • Understand laws, investigations and ethics surrounding security
Date: March 24 – 25, 2010 and April 21 – 22, 2010

Recovery and Incident Response Plans (0.7 CEUs)
This class is designed to enable participants to develop and implement an effective incident response and disaster recovery plan. At the end of this session, participants will be able to do the following:

  • Develop an effective incident response plan.
  • Conduct forensics.
  • Direct incidents through proper channels.
  • Adhere to reporting and notification requirements.
  • Develop an effective disaster recovery plan for information technology and telecommunications.
Date: May 19 – 20, 2010

The Information Security Environment: Trends, Threats and Vulnerabilities (0.7 CEUs)
This course provides participants with an understanding of current security trends, threats and vulnerabilities. In addition, participants will learn how to efficiently and effectively respond to such issues. At the end of this session, participants will be able to do the following:

  • Understand the interdependency between people, processes and technology.
  • Understand how trends, threats and vulnerabilities affect an organization, other dependent organizations and the nation.
  • Understand individual role in mitigating the risks.
  • Develop a toolkit for mitigating the risks.
Date: June 23, 2010

Leadership Skills for Information Security Leaders (0.7 CEUs)
This course develops business skills and organizational savvy for leaders to collaboratively deliver high value results in dynamic environments with limited formal authority. At the end of this course, participants will be able to do the following:

  • Influence the adoption of changes with and without authority
  • Communicate and collaborate effectively with diverse stakeholders in a multi-jurisdictional environment
  • Examine and recommend policy and system solutions that align with organizational strategies
  • Plan a prioritized portfolio of changes to optimize impact (risk and ROI)
  • Lead the implementation of policy and system changes in a dynamic environment
Date: June 24, 2010 and July 21 – 22, 2010

Panel Presentations: August 5, 2010 (Thur., 8:00 a.m. - 2:00 p.m.)

*Fall cohort dates will be posted by April 30th.

Commitment: The $4,299.00 program fee includes:

  • 84 hours of instruction
  • 8.4 continuing education units
  • Course materials
  • Certificate of Participation

Related Programs and Courses
Business Analyst Certificate Program, Project Management Certificate Program, Leadership for the Government Executive

Program Sponsors

  • Emir Jose Macari – Dean, College of Engineering and Computer Science, Sacramento State
  • David Villanueva – Chief Information Officer, Office of Communications and Information Technology, Sacramento County
  • Mark Weatherford – Director, Office of Information Security and Privacy Protection, State of California
Advisory Committee Members
  • Stephanie Anderson – Physical Security, Intel Corporation
  • Kenneth Bollinger - Chief, Microelectronics Support Services Branch, Defense Microelectronics Activity
  • Rick Burke – Information Security Officer, Defense Microelectronics Activity Center
  • Kevin Dickey – Deputy Chief Information Officer, Contra Costa County
  • Tom Genessy – Senior Vice President, Golden 1 Credit Union
  • Dean Hipwell – Director of Operations, International Systems Security Association
  • Shawn Hendrickson – BEST Operations Manager, Pacific Coast Companies, Inc.
  • Gary Hummel – Information Security Officer, Alcohol and Drug Program, State of California
  • Walter Kendricks – Information Security Officer, California Highway Patrol
  • Michael Libby – Information Systems Director, Downy Brand, LLP
  • Patrick McGuire – Information Security Officer, Board of Equalization, State of California
  • Tony Morshed – Information Technology Manager, Department of Transportation, State of California
  • Martin Nicholes – Hardware Security Expert, Firmware Architect
  • Colleen Pedroza – Chief Information Security Officer, Office of Information Security and Privacy Protection, State of California
  • Jim Reiner – Information Technology Manager, Sacramento County
  • John Roina – Director, Curriculum and Instructional Services, Yolo County Office of Education
  • Scott Saunders – Chief Information Security Officer, Sacramento Municipal Utility District
  • Teresa Soria – Information Security Officer, Department of General Services, State of California
  • Scott Tirapelle – Chief Information Security Officer, California State Teachers’ Retirement System
  • Rosa Umbach – Assistant Chief Information Security Officer, Office of Information Security and Privacy Protection, State of California
  • Matt Watanabe – Marketing and Circulation Director, Sacramento Business Journal
  • Gary Winuk – Chief Deputy Director, Governor’s Office of Homeland Security

Contact Information
For more information, contact a program representative at cceinfo@csus.edu or (916) 278-4433. Classes fill up quickly. Be sure to register early so you are assured a space in the course!
 
College of Continuing Education | 3000 State University Drive East | Sacramento, CA 95819-6103 | (916) 278-4433