BUS-S 433 Information Systems Security
Threats to information security are global, persistent, and increasingly sophisticated and that is why the ability to secure information within modern enterprises is a growing challenge. This course focuses on the principles of confidentiality, integrity, and availability as they pertain to information systems security, while establishing a foundation-level literacy of security knowledge, methods, and best practices to help modern enterprises address the challenge. Topics include: key characteristics of information security including threats, attacks and vulnerabilities, risk management techniques to identify and prioritize risk factors for information assets, access control approaches such as authentication, authorization and biometric access controls, encryption process (symmetric and asymmetric encryption), security practices to prevent misuse of information, and major national and international laws that relate to the practice of information security. Hands-on labs (e.g., Wireshark, risk analysis, CMD line hacking) showcase how to apply various security strategies through a practical application.