INF 922 Security and Auditing of Information Systems

This course covers the technical as well as administrative aspects of security in modern digital enterprises from a total systems point of view instead of concentrating on one issue (e.g., networks security, host security, data security, cryptography). The course starts with a comprehensive overview of security principles and practice that are needed to satisfy the IS systems integrity, confidentiality and availability requirements. The course also examines the use of various standards, guidelines, laws and methods which are used in information systems audits for IS security.  This discussion serves both to set the governance framework the information systems audit works within and the choices for specific courses of action to meet the requirements of the audit.