CSEC 587: Information Security Governance (Formerly CNS 587)

In this course, students apply their knowledge of information security and regulatory compliance to analysis and evaluation of governance, risk management, and compliance problems. Students will learn the meaning of IT governance by examining the differences between governance and management; gaining hands-on application of industry governance frameworks; evaluating an information security program; defining incidence response policy; assessing risk; and defining regulatory compliance strategy. Students will discover how good information security governance adds value to an organization.