Introducing Security: Aligning Asset and Risk Management

Description

Program Overview:

Asset management deals with the protection of valuable assets to the organization as those assets progress through their lifecycle.

Therefore, we need to address the security of assets through all the stages of their life cycle including creation/collection, identification and classification, protection, storage, usage, maintenance, disposal, retention/archiving and defensible destruction of assets.

To properly protect valuable assets, such as information, an organization requires the careful and proper implementation of ownership and classification processes, which can ensure that assets receive the level of protection based on their value to the organization.

The enormous increase in the collection of personal information by organizations has resulted in a corresponding increase in the importance of privacy considerations.

As a result, privacy protection constitutes an important part of asset security and appropriate security controls must be chosen to protect the asset as it progresses through its life cycle, bearing in mind the requirements of each phase and the handling requirements throughout.

 

Duration:

1 day (8 hours)

 

Learning Objectives of the Program:

After completing this course, the participant will be able to:

1.1 – Classify information security and security concepts.

1.2 – Consolidate components of the asset management life cycle.

1.3 – Identify common risks and vulnerabilities.

1.4 – Provide examples of appropriate risk treatment strategies

 

Who should attend?

CISO, Chief Audit Officers, IS Auditors, Risk Officers, Compliance Officers, IT Officers, Asset Management Officers / Custodians

 

Program Structure and Outline

Module 1: Understand Security Concepts (Domain 1 – Security Operations and Administration)

  • Non-Repudiation
  • Availability
  • Mandates for Protecting Private Data
  • Least Privilege
  • Accountability

Module 2: Participate in Asset Management (Domain 1 – Security Operations and Administration)

  • Identification of Assets
  • Information Asset Ownership
  • Operations/Maintenance
  • Third Party/Outsourcing Implications

Module 3: Understand the Risk Management Process (Domain 3 – Risk Identification, Monitoring and Analysis)

  • Today’s Risk
  • Knowledge Check: Identify Risk
  • Vulnerabilities
  • Risk Management Process

Module 4: Understand the Risk Treatment Process (Domain 3 – Risk Identification, Monitoring and Analysis)

  • Risk Assessment
  • Asset Inventories and CVE Data
  • Vulnerabilities and the Risk Register
  • Risk Profile
  • Risk Visibility
  • Risk Register
  • Risk Factors
  • Zero-Day Attacks

 

Resource Speaker:

MR. KAMA NESON GANESON

CORS, CCP, CSAP, PMP, PMI-RM, CLA ISMS & BCMS, ERMP

Course Director and Master Trainer

 

Schedule:

February 23, 2026 (Monday) 9:00 AM – 5:00 PM

 

Training Fee per Participant:

Member Institution – Php 3,920.00

Non-Member Institution – Php 5,040.00

*VAT inclusive

 

REGISTER HERE!