INF 806 Security Policy, Standards and Management

This course provides students with the standards for creating an enterprise-wide security policy. Topics include: security management principles; defining security requirements; planning and documenting security policies; asset identification and control; system access control; and Internet security. Students also learn how to formulate, administer, manage and evaluate security policies and standards based on best standards for information systems security (ISO 17799), best practices for security auditing (CObIT) and the protection of private information.