ITAS 369 Management of Information Security Programs

This course covers the essential practices involved in developing a security policy. Topics covered include IT security policies and procedures, information security standards, frameworks, security baseline analysis, risk assessment, guidelines for security policy development, the value of security templates, and policy implementation, revision, metrics, maintenance, and enforcement, threat detection and reaction, and technical and managerial responses.