Skip to main content

IT Security and Risk Management

General

Prefix

IS

Course Number

372

Course Level

Undergraduate

Department/Unit(s)

Information Systems

College/School

Herberger Business School

Description

Management of the security function. Risk assessment of the probability of data being compromised, design phase, and disaster recovery plan. Auditing and quantitative and qualitative analysis.

Prerequisites

Credits

Min

3

Max

3

Repeatable

No

Goals and Diversity

MN Goal Course

No

Cultural Diversity

No

Learning Outcomes

Outcome

Evaluate the risk management process.

Outcome

Analyze an audit trail and identify potential security risks.

Outcome

Apply both quantitative and qualitative risk assessment techniques to security log data.

Outcome

Develop an IT security plan for an organization.

Outcome

Use security tools in an ethical and legal manner.

Outcome

Evaluate the purpose of the various personnel involved in the risk assessment process.

Outcome

Identify strengths and weaknesses in contingency and disaster recovery plans.

Outcome

Audit security policies, such as network, host, software, physical, administrative, and encryption.

Course Outline

Course Outline

Threats, vulnerabilities, and exploits. 20% Defining and performing risk assessments. 20% Identifying assets and activities to be protected. 10% Risk mitigation security controls. 20% Business continuity planning. 10% Disaster recovery planning. 10% Computer incident response planning. 10%

Dependencies

Programs

IS372 is a completion requirement for: