Information Assurance and Security: Information Security Management - DIT 15535
|DIT 15535||18 hours|
The purpose of this course is to introduce students to the area of network and information security. This course builds the conceptual foundation for the advanced Information Assurance and Security (IAS) courses. Topics include the context of information security, legislation, threats, policies, procedures, security management issues, and risk management and assessment. This course is more conceptual in nature and provides limited hands-on experience in working with many of the concepts presented.
Upon successful completion of this course, students will be able to:
- Explain the importance of Information Security (InfoSec) and Information Assurance (IA) Management;
- Describe basic concepts about Information Security (InfoSec) and Information Assurance (IA);
- Compare relevant legislation and regulations;
- Distinguish between the various threat categories;
- Differentiate between qualitative and quantitative risk analysis;
- Describe the various architecture protection mechanisms;
- Classify formal Information Security (InfoSec) models;
- Explain how physical security and environmental controls relate to Information Assurance (IA);
- Compare Biometric Systems and access controls;
- Interpret and critically analyze the Information Assurance posture of an organization's environment.