CIS 257 Information Assurance

Information Assurance is the practice of protecting against and managing risk related to the use, storage and transmission of data and information systems. An overarching model of information assurance for any organization needing a comprehensive security plan will be outlined. Students will learn how to construct an effective security policy from an understanding of the building blocks of security. Topics include asset identification, human factors, compliance with regulations, personnel security, risk assessment, business continuity, and ethical considerations are covered, as well as computer and network security tools and methods.