An introduction to the various technical and administrative aspects of information security and assurance. This course provides the foundation for understanding the key issues associated with protecting information assets, determining the levels of protection and response to security incidents, and designing a consistent, reasonable information security system, with appropriate intrusion detection and reporting features.
The purpose of the course is to provide the student with an overview of the field of information security and assurance. Students will be exposed to the spectrum of security activities, methods, methodologies, and procedures. Coverage will include inspection and protection of information assets, detection of and reaction to threats to information assets, and examination of pre- and post-incident procedures, technical and managerial responses, and an overview of the information security planning and staffing functions.
Upon completion of this course, students will be able to:
- Identify and prioritize information assets and threats to information assets.
- Define an information security strategy and architecture.
- Plan response to information security incidents.
- Present a disaster recovery plan for recovery of information assets after an incident.
- Describe legal and public relations implications of security and privacy issues.
- Demonstrate knowledge of a chosen security topic through a written research paper.