In this course students learn the basics of information security, in both management and technical aspect. Students understand various types of security incidents and attacks, and learn methods to prevent, detect and react to incidents and attacks. Students will also learn the basics of application of cryptography, which is one of the key technologies to implement security functions. In the last session, teams of students will present their study project on a topic related to information security.

After completing this course, the student will be able to:

1. Understand the requirements of information security strategies.
2. Explain various information security threats and control for them.
3. Analyze a security incident and design countermeasures.
4. Explain information security incident responses.
5. Explain the usage of Common Key cryptography and Public Key cryptography.
6. Explain the mechanism to protect confidentiality and completeness of data.
7. Make a presentation related to information security strategies.

1. Information Security Requirements
2. Basics of Information Security and Human aspects
3. Information Security for Server Systems
4. Information Security for Client devices
5. Information Security Risk Management and Related Exercise
6. Security Risk management as an Organization
7. Information Security Management System (ISMS)
8. Information Security Policy, Standards and Procedures
9. Information Security Evaluation
10. Security Incident Response
11. Information Security and Cryptography

• Whitman, M. E. and Mattord, H. J.(2014) Principles of Information Security. KY, USA: Cengage Learning.
• Shimeall, T. and Spring, J. (2013). Introduction to Information Security: A Strategic-Based Approach. Waltham, MA: Syngress Publishing.

Paa, C. and Pelzl, J. (2009) Understanding Cryptography: A Textbook for Students and Practitioners. Springer. London ISBN: 3642041000.