INFORMATION SECURITY AND RISK MANAGEMENT

_{Course Objectives}

• _{Understanding and appreciation of a range of information system security components, principles, policies, and strategies.}
• _{Information security philosophies are discussed along with methods, models, techniques and controls, including risk analysis, qualitative and quantitative matrices, and access controls: such as passwords, smart cards, and security auditing.}
• _{Information security is especially considered in the area of Internet security management and policy; and from the standpoint of ethical and legal issues, as well as computer crime.}
• _{Information security current issues and future trends will also be discussed}

_{Focal Point}

• _{What is Information Security?}
• _{Types of Attacks}
• _{Information Security Services}
• _{Legal Issues in Information Security, Policy}
• _{Managing Risk}
• _{Information Security Process}
• _{Information security best practice}
• _{Business Continuity Plans/ Disaster Recovery Plans}