INF 853 Governance, Risk and Control

Principles, concepts and techniques applied to information systems security governance, risk and control are explored in this course. Topics covered include: a' the role of governance in the enterprise and study of ISACA's COBIT 5.0 governance framework; b' risk assessment methodologies and tools; and, c' the implementation and management of specific operational IT controls to ensure informational confidentiality, availability and integrity. Through lectures, presentations and labs, students also gain familiarity with issues related to occupatioal fraud and hacking attempts, and how these threats affect the IT risk management process.