Thomas College

Course Information

another search

Number:CS424
Name:Information Security Policy, Administration, and Management
Description:This course provides the foundation of security principles and skills necessary for the successful management of information security in an organization. Students will understand the controls over hardware, media, as well as personnel responsible for utilizing an organization?s information assets. The student will also become familiar with auditing and monitoring for security events. The course focuses on the measures and their associated procedures necessary to safeguard against damage, loss and theft. Students will be able to facilitate the integration of leadership, management, and processes within an organization to set and achieve optimal outcomes for the entire organization. The creation of security policy, including its Board approval, forms a required project.
Credit(s):3
Offered (DAY schedule):
Instructor Permission Required:N
Pre-Requisite(s):
Prior or concurrent completion of CS345 - Data Communications

Course Objectives

Students completing this course will be able to: Demonstrate an understanding of active and passive information security controls; Demonstrate an understanding of the management, processing, and use of security events as the implications for the security of the organization; Demonstrate an understanding of the threats, vulnerabilities, and countermeasures related to protecting the organizations information assets; Demonstrate familiarity with the risk to facilities, data, media, equipment, knowledge, support systems, and supplies for organizations. Third party interactions are explicitly included within the scope; Develop and demonstrate effective methods to set, gain approval of, and execute security policy within an organization.

Books Previously Used in this Course

Term Year Title ISBN Author Edition Publisher
F 2015 OFFICIAL (ISC)2 GUIDE TO THE CISSP CBK GORDAN 4TH 15 TAYLOR
F 2015 SECURITY POLICIES+PROCEDURES GREENE 2ND 14 PEARSON
S 2014