This course defines information security. Topics include: security services and its mechanisms, such as confidentiality, integrity, availability and non-repudiation, access control models, authentication methods, types of attacks (including social engineering, man-in-the middle, DoS…etc), malware, security principles (such as separation of duties, need to know…etc), basic principles of hashing, symmetric & asymmetric cryptography, digital certificates & PKI, overview of firewalls and Intrusion detection system, risk assessment, incident response, disaster recovery, business continuity and a general look into computer forensics.