MSCS641 Information Systems Risk Management

This course introduces students to the best practices for information systems risk management. 学生 will learn about classes of threats, including the consequences of each threat. Upon successful course completion, students will be able mitigate each of types of threats. This course provides a management perspective on how to protect information infrastructure and assets, utilizing a defense in depth model that emphasizes the role of people, 流程, 和技术. Information risk management provides decision-makers with the necessary skills to determine information security risk that helps in risk 缓解 decisions. This course investigates the existing risk management frameworks, 模型, 流程, and tools to equip students with the theory, 科学, and practical knowledge to operationalize risk management in private and government agencies. Topics include vulnerabilities and risks, risk identification, 风险评估, 预防, 缓解, 复苏, and outsourcing and off-shoring risks. 学生 will examine cutting-edge risk management 科学 to understand the future of information technology risk management.

先决条件: MSCS501