This course introduces students to the concepts of information security management. Both technical and administrative aspects of enforcing and managing the security of information assets will be covered through requirements analysis, planning and designing of information security management systems and development of information security plans and policies.

Upon successful completion of this course, students will be able to:

• Articulate the importance of information security to organizations and individuals and learn how information security can be incorporated in any system;
• Evaluate information assets in order to define the level of security needed, information security strategy, model and architecture to suit organizational security needs;
• Identify possible threats to assets, and possible countermeasures to reduce vulnerabilities and avert risks and their suitability for implementation;
• Practice best practices concerning information security behavior to help protect information assets;
• Utilize standard processes and procedures to analyze security requirements and design and document information security plans.