Course Descriptions
Information Systems Security
ISM 4320 – Information System Security
This course is the first in the MIS Security track and introduces principles and fundamentals of the information and system security. The content is designed to address the rapidly growing global problems of securing computer information. The goal is to acquire the basic knowledge of the most popular security issues and paradigms, to examine the field of information security and to prepare information systems students for their future roles as business decision-makers. This course presents a balance of the managerial and the technical aspects of the discipline and addresses knowledge areas of the CompTIA’s Security+ Certification Exam throughout. It provides a comprehensive overview of network security and covers communication security, network and applications security, infrastructure security, threats and vulnerabilities, World Wide Web security, cryptography, operational/organizational security, disaster recovery, business continuity, as well as computer forensics. After introducing the general security concepts, the course covers authentication methods along with common network attacks and how to safeguard against them. The course is taught within a real-world context, by including examples of issues faced by today’s professionals, ranging from firewalls and forensics to scanning and operating system vulnerability, and by including tools for hands-on work.
ISM 4323 – Security Management
The Security Management course is designed for senior business and information systems students who want to learn the management aspects of information security. The goal is to provide a comprehensive overview of the multi-faceted, global, and interdisciplinary field of security management. It takes a "view from the top" and presents what future managers need to know about information security. The material covered addresses the managerial aspects of information security for future managers. The pillars of security management – planning, policies, risk assessment and risk management, disaster recovery and personnel issues are considered in depth. Examples of information security issues and practices implemented in today’s business environment are presented and skills are reinforced as they are learned through hands-on activities and a Case Project. The course features numerous examples and case studies specific to security management, identifies specific security applications and examines the issues encountered within those areas.
ISM 4324 – Computer Forensics
The course has a technical orientation and introduces the fundamentals of computer forensics. The course will concentrate on the mechanics and implications of the technologies. It offers a disciplined approach to implementing a comprehensive accident-response plan with a focus on being able to detect intruders, discover what damage they did and discover their identities. The content is designed to address the rapidly growing global problems of securing computer information. The goal is to acquire the basic technical skills and knowledge of the most popular security technologies, the forensic methodology and applications. Fundamentals such as network and applications security, threats and vulnerabilities, World Wide Web security, computer forensics, authentication and access control will be covered.
| 
