Introduction
As a manager at the Department of Health and Human Services (HHS), you play a vital role in safeguarding HHS systems and information assets. This course will address a risk-based approach to enterprise-wide information security program management and provide an overview of your role in implementing and managing information systems.
References to HHS information security policies, standards, and guidance are provided for various course topics. Refer to your Operating Division’s (OpDiv) security policies and procedures, in most cases they will be more specific than Department policy.