IT4073 Organizational Security

In this course, students analyze the people and process involved in information assurance and security, with particular focus on security life cycle, certification and accreditation, configuration management, employment practices, and security awareness. Students examine best practices of policy development along with industry-specific standards and interpret industry-specific laws and regulations, such as Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley (SARBOX), and National Institute of Standards and Technology (NIST). In addition, students gain and demonstrate knowledge of biometrics and privacy concerns in computing, personnel, and physical security.