Processes associated with governance, policy, monitoring, incident management and management of the information security function, processes associated with the implementation of security configurations, processes associated with the selection and maintenance of security technologies. In addition, the following audit/assurance reviews will be covered. They are: Identity management, security incident management, network perimeter security, systems development, project management, IT risk management, data management, and vulnerability management.
Textbook:
Required:          

• Michael E. Whitman, Herbert J. Mattord, Management of Information Security, Fourth Edition. Course Technology, Cengage Learning, 2014, ISBN-13: 978-1-285-06229-7.

Objective: 
            Student will learn:          

• Introduction to the Management of Information Security
• Planning for Security
• Planning for Contingencies
• Information Security Policy
• Developing the Security Program
• Security Management Models
• Security Management Practices
• Risk Management: Identifying and Assessing Risk
• Risk Management: Controlling Risk
• Protection Mechanisms
• Personnel and Security
• Law and Ethics