Course Information
Class Format: In-Class meetings
Meetings: Tuesdays & Thursdays
Section 002: 3:30 PM – 4:50 PM
Location: Alter Hall, Room 232
Course Objective
This course is a broad introduction to the managerial issues of information security. Because security is multifaceted, the topics of the class range widely, including technical (e.g., cryptography), managerial (e.g., policy compliance), physical (e.g., door locks), and psychological (e.g., social engineering) issues. A key objective of the class is to develop a security mindset, in which one learns to think like an attacker for ways to exploit a system.
Course Learning Goals
Develop a security mindset: Learn to think like a security professional—how to identify threats like an attacker, and how to model and mitigate those threats.
Gain a working knowledge of methods to protect data: Gain a working knowledge of modern methods of protecting data: encryption, hashing, confidentiality, authentication, integrity, non-repudiation, certificates, and IP security.
Learn methods of attack and defense: Learn methods used by hackers to attack information systems and how to protect against those methods of attacks.
Appreciate the broad disciplines required for IS security: Appreciate the broad disciplines required for information security to work. We’ll cover subjects as comprehensive as cryptology, physical security, psychology, and management, based on based on the NIST Cybersecurity Framework Version 1.1 and the NIST Risk Management Framework.
Communicate security risks and responses effectively: This course is a Temple-designated writing intensive course. As such, a substantial portion of the course will be devoted to practicing capable, proficient communication of cybersecurity risks, threats, mitigations, and responses to relevant stakeholders for their decision making.