Foundations of Information Security Management
Foundations of Information Security Management will expose students to higher-level security concepts, infrastructures, standards, protocols and best practices that are necessary for today's Information Security professional. Building on the knowledge of fundamental security technologies covered in Foundations of Information Security, students will develop an understanding of the fundamental tenets of information assurance solutions for businesses, government agencies and enterprises which require the establishment of a comprehensive security strategy and execution plan. This course will expose students to key concepts and principles in security operations; security architecture and design; information security governance and risk management; business continuity and disaster recovery planning; and topics in legal, regulations, investigations and compliance.
At the end of the course, students will be able to:
Evaluate security controls, operations and maintenance and explain how to create sustainable operational security
Describe and evaluate security policies, procedures, baselines and guidelines.
Explain core security characteristics, such as Confidentiality, Integrity and Availability.
Develop strategies for assessing risks, performing risk analysis and trade-off analysis.
Explain the basics of business continuity management and strategies, along with the concept of disaster recovery planning.
Assess how laws, regulations and compliance play a role in the security of information, and illustrate at least one regulation that deals with protecting privacy or protecting commercial transactions.
Prerequisites: It is suggested that students complete RIAS 101 prior to taking RIAS 102.