Information security management and policy
S Lichtenstein
6 points
* 4 hours per week
* First semester
* Caulfield
Objectives This subject will provide students with an understanding of information security management and policy issues in an organisation. Students will possess knowledge of fundamental concepts in information security, security infrastructure, security programs, and security policy, standards and procedures. Students will be able to develop security policies. Students will appreciate the legal, ethical and philosophical issues involved in effective information security management.
Synopsis Information security concepts: breaches, threats, controls, vulnerabilities; types of threats, including hackers, viruses, fraud, natural disasters, data privacy; risk assessment, including risk analysis and risk management techniques; types of controls. Information security management: information security infrastructure, security programs, security policies, security awareness, security roles and responsibilities, acceptable usage policy, sanctions, Internet security policy, management of computer crime. Development of security policies. Ethical, legal and philosophical issues in information security management.
Assessment Examination (2 hour `seen' test): 40%
* Practical work:
60%
Prescribed texts
Lichtenstein S Readings in information security management Dept Information Systems, Monash U, 1997
| Published by Monash University, Clayton, Victoria
3168 Copyright © Monash University 1996 - All Rights Reserved - Caution Authorised by the Academic Registrar December 1996 |