SYS3110

Information systems security

S Lichtenstein

6 points
* 2 hours per week
* Second semester
* Caulfield, Clayton
* Prohibitions: SYS4110

Objectives This subject will provide students with a knowledge of security issues in information systems, and will enable them to plan, develop and manage secure information systems. The students will gain knowledge of current information security methodologies and techniques, and knowledge of information security management and policy. Students will develop an understanding of the need for flexible yet strong information security, and the need for professional ethics in information security. Students will develop the skills to apply information security methodologies to the analysis of threats, risks and breaches in an information system, in order to select appropriate information security measures. Students will also develop the skills required to manage information security in an organisation.

Synopsis Review of information security components, principles, problems. types of threats, including hackers, viruses, Review of information security components, principles, problems. Types of threats, including hackers, viruses, natural disasters, fraud. Study of major, real-life, disastrous security breaches. Analysis of breaches, threats and risks. Study of information security philosophies, methods, models, techniques and controls, including risk analysis, access matrices, passwords, smart cards, and auditing. Information security for different applications. Internet security. Ethical and legal issues. Computer crime. Information security management and policy. Internet security management and policy. Information security in the future.

Assessment Examination: 60%
* Practical work: 40%

Prescribed texts

Lichtenstein S SYS3110/SYS4110: Course notes (for sale) Dept Information Systems, Monash U, 1998