|
本課程旨在學習如何提昇資訊系統架構的安全性,而非傳統上追求降低資訊安全風險的做法。修習本課程將對什麼是資訊安全風險以及如何潛在地減輕這些風險有清晰的了解,並將討論架構師所涉及的不同活動,以及如何將安全性整合到這些活動中。依架構師的層級來分,可分為企業層級、解決方案層級、和支援層級,每一種架構師都需要用不同的角度來思考安全性的問題,包括治理方面、策略和程式等級方面、以及解決方案等級方面等,並提供資訊安全架構領域的視圖。
《 課程簡介 -- English 》
This course aims to learn how to improve the security of the information system architecture, rather than the traditional pursuit of reducing information security risks. Upon completion of this course, you will have a clear understanding of what information security risks are and how to potentially mitigate them. We will also discuss the different activities that architects are involved in and how to integrate security into these activities. According to the level of architects, it can be divided into enterprise level, solution level, and support level. Each type of architect needs to think about security issues from different perspectives, including governance, strategy and program level, and Solution level, etc., and provide a view of the information security architecture field.
|