IT Risk Assessment
CIT 45100/ 3 Cr.
Students will learn the basic tools of security risk assessment and risk management. Students will be able to identify and assess security risk, conduct information asset valuation, and apply risk control strategies. Other topics discussed will be: security policies, NIST Security Models, and training education and awareness. At the end of the course students will be able to assess vulnerabilities and document them according to a published assessment standard.
- Available Online: No
- Credit by Exam: No
- Laptop Required: Yes
P: CIT 40600.
Course Outcomes (What are these?)
- Identify and prioritize information assets (CIT e, j, m, n)
- Identify and prioritize threats to information assets (CIT e, j, m, n)
- Define an information security strategy and architecture (CIT e, j, m, n)
- Plan for and respond to intruders in an information system (CIT j)
- Explain legal and public relations implications of security and privacy issues (CIT e, j, m)
- Present a risk assessment plan using a published assessment standard (CIT e, j, m)
CIT Student Outcomes (What are these?)
(e) An understanding of professional, ethical, legal, security and social issues and responsibilities.
(j) An ability to use and apply current technical concepts and practices in the core information technologies.
(m) An understanding of best practices and standards and their application.
(n) An ability to assist in the creation of an effective project plan.
- Planning for Security
- Planning for Contingencies
- Security Policy
- Developing the Security Program
- Security Management Models and Practices
- Risk Management: Identifying and Assessing Risk
- Risk Management: Assessing and Controlling Risk
- Protection Mechanisms
- Personnel and Security
- Law and Ethics
- Perform Complete Risk Management and Assessment Plan
Principles of Undergraduate Learning (PULs)
3. Integration and Application of Knowledge
4. Intellectual Depth, Breadth, and Adaptiveness
5. Understanding Society and Culture
6. Values and Ethics