Syllabus
Course Code: SEC -510(II) Course Name: INFORMATION SECURITY |
||
MODULE NO / UNIT | COURSE SYLLABUS CONTENTS OF MODULE | NOTES |
---|---|---|
1 | Introduction: History of Information Security, CNSS Security Model, Components of Information Security, Approaches to Information Security and Implementation, Security Systems Development Life Cycle, Security Professionals and the Organization. | |
2 | The Need for Security: Introduction, Business Needs First: Threats and Attacks, Legal, Ethical, and Professional Issues in Information Security, Law and Ethics in Information Security: Relevant Laws, International Laws and Legal Bodies. | |
3 | Risk Management: An Overview of Risk Management, Risk Identification, Risk Assessment, Risk Control Strategies: Selecting a Risk Control Strategy, Quantitative versus Qualitative Risk Control Practices. | |
4 | Planning for Security – Introduction to Information Security Planning and Governance, Information Security Policy, Standards, and Practices, Security Education, Training, and Awareness Program. |