This course examines information systems security principles in an organizational context. Included are preventative, detective, administrative, and technical, security controls. Also included are organizational methodologies utilized to create security policies, procedures, and standards. Emphasis placed upon management issues and solutions within a specific legal and regulatory context. Specific topics include access control, telecommunications, cryptography, and physical security.
Class activities are augmented with laboratory activities that provide students the opportunity to apply the principles. Laboratory activities focus on four areas: Operating Systems, Telecommunications, Cryptography, and Security Management.