IDSC4401

Information security is recognized as one of the most prominent concerns in modern information systems management. Security incidents can cause severe damage to corporations in forms of lost productivity, downtime, and impacts from unauthorized access to personal information. With attacks becoming more sophisticated, it is important to understand what can be done to proactively prevent these types of attacks with a risk-based approach in mind. The purpose of the course is to provide the student with an overview of the field of Information Security and Assurance.

Students will be exposed to the technical spectrum of security activities, methods, methodologies, and procedures in managing risk to the organizational environment. Coverage will include general concepts and applied methods of cybersecurity controls, particularly as they relate to confidentiality, integrity, and availability of information assets. Topics include system security analysis, access control and various security models, identification and authentication, protection against external and internal threats, communication protocols, and internet security.

Recommended Prerequisite: IDSC 3001

Every Spring