Skip to main content

Policy Development and Security Issues in Information Systems

General

Prefix

IS

Course Number

371

Course Level

Undergraduate

Department/Unit(s)

Information Systems

College/School

Herberger Business School

Description

Development of security policy in line with legal requirements. Risk management, security planning, contingency/disaster planning, auditing, TEMPEST compliance and on-going evaluation through the system life cycle.

Credits

Min

3

Max

3

Repeatable

No

Goals and Diversity

MN Goal Course

No

Cultural Diversity

No

Learning Outcomes

Outcome

State and apply the comprehensive model of Information Assurance.

Outcome

List several security threats within the area of information systems.

Outcome

Apply commonly used security measures in the area of information systems.

Outcome

Formulate a comprehensive security policy for information systems.

Outcome

Formulate a contingency/disaster recovery policy for information systems.

Outcome

Determine if a security policy is in line with the legal constraints.

Outcome

Define a trusted system.

Outcome

Apply government standards to security policy information.

Course Outline

Course Outline

The comprehensive NSA model. 10% Basics of risk management and threat analysis. 15% Review of national security policy. 5% Security and the system life cycle and concept of trusted system. 10% Physical security, Security and personnel. 10% Security planning. 10% Meeting government directives. 10% Planning for contingency/disaster recovery and TEMPEST compliance. 10% Basic analysis of legal liability and the effect of PL 100-235. 10% The concept of an INFOWAR. 10%

Dependencies

Programs

IS371 is a completion requirement for: