Technology
 

Information Assurance and Security

Information Assurance and Security
Computer security principles. Incident prevention and management. Information assurance dimensions of availability, integrity, authentication, confidentiality and non-repudiations to ensure transmission, storage, and processing of information.
IT&C
366
 Hours3.0 Credit, 2.0 Lecture, 3.0 Lab
 PrerequisitesIT&C 344 & IT&C 347 & ENGL 316
 TaughtWinter
 ProgramsContaining IT&C 366
Course Outcomes: 

History and Context

Explain information assurance and security models, and relate these to historical and current security problems in the context of standards, best practices, policy, planning, usability and continuous education.

Risk Management

Use risk assessment methods to create a security plan that uses both technical and non-technical countermeasures for a management audience.

Incident Response

Develop as a team, incident response, disaster recovery and business continuity plans with an awareness of laws, regulatory standards and best practices.

Practicum

Install and configure various countermeasures such as firewalls, intrusion detection systems, virtual private networks, and encryption systems; and explain the benefits, limitations and usability impact these may have within an organization.

Penetration Testing

Explain how the processes of certification, accreditation and maintenance can mitigate risks, and be able to support these by performing a penetration test using basic hacking techniques.

Security for technical and non-technical personnel

Instruct technical and non-technical audiences about the key elements of a good security implementation.