Course Title: 
Cybersecurity Governance
Course Code: 
Year Taught: 
Postgraduate (PG)
School of Engineering
Cyber Security

"Cybersecurity Governance" is an elective course offered in M. Tech. in Cyber Security Systems & Networks program at School of Engineering, Amrita Vishwa Vidyapeetham, Amritapuri.

Principles of cyber-security governance, Assessment of cyber security maturity, Theories of governance – introduction, Governance – definitions and typologies, Tools, methods and processes, Vulnerability management, Threat management, Endpoint management , Intrusion detection and prevention (IDPS), Security incident management, Security operations center (SOC) and related concepts, Measurement of governance: Metrics – concepts, Application security metrics, Network security metrics, Security incident metrics, Vulnerability metrics, Service level objectives / agreement (SLO / SLA), NIST metrics, Basics of security analytics, Threat intelligence and governance, Data driven security governance, Impact of cognitive security on security governance, Industry specific security compliance, Cyber security governance India and Other countries, NIST mandates for compliance, Security reporting basics, CISO – role and organization structure

  1. Hayden, Lance. IT Security Metrics: A Practical Framework for Measuring Security & Protecting Data. McGraw-Hill Education Group, 2010.
  2. Jacobs, Jay, and Bob Rudis. Data-driven security: analysis, visualization and dashboards. John Wiley & Sons, 2014.
  3. Collins, Michael. Network Security Through Data Analysis: From Data to Action. " O'Reilly Media, Inc.", 2017.
  4. Jaquith, Andrew. Security metrics: replacing fear, uncertainty, and doubt. Pearson Education, 2007.
  5. Cybersecurity, Critical Infrastructure. "Framework for Improving Critical Infrastructure Cybersecurity." Framework 1 (2014): 11.