Ohlone College logo with link to home page. A-Z Index. Site Search. Campus Directory. Ohlone College home page.
Ohlone College banner photo.

Required Reading

Recommended
Reading

Class Materials

Syllabus

Lecture slides, quizzes, and supplemental reading available on WebCT.
Click here to log into WebCT

Links

Articles
Web Sites
Resources
Client Software
Server Software
Firewalls & Proxy Servers
Free Online Scans
Scan your PC for Viruses
(Trend Micro)

Scan your PC for Spyware
(Pest Patrol)

Related Courses

Fundamentals of Network Security
Cisco Network Security
Computer Forensics
Certifications
Security+
Cisco Firewall Specialist
CCSP
CCIE-Security
SSCP
CISSP

Cisco Secure PIX 501 firewall available for student use
PDF Viewer

 

Principles of Information Security

This course provides an in-depth study of Information Security fundamentals and provides a comprehensive overview of the field of Information Security. Students will be presented with both the managerial and technical aspects of information security and will cover the knowledge and skills area of the Certified Information Systems Security Professional (CISSP) certification.

This course provides comprehensive preparation for students who are interested in making a career out of information security. Course content and objectives map to the CISSP certification exam. CISSP certification is only available to those qualified candidates who successfully pass the examination created by the International Information Systems Security Certification Consortium (ISC)2.

The CISSP is considered the gold standard of information security certifications. CISSP certified professionals command top salaries and are in high demand in many industries.

This is a 100% online class designed as an interactive study guide.We will not meet in the classroom, but will keep in touch using online tools.

Objectives:

The skills and knowledge delivered in this course are derived from an industry-wide and worldwide job task analysis and a survey to validate the job task analysis. The survey results below lists the domains measured by this examination and the extent to which they are represented in the examination.

Upon completion of this class, the student should be able to:

  1. Describe what Information Security is and how it came to mean what it does today.
  2. List the events in the history of computer security and describe how it evolved into information security
  3. Outline the phases of the security systems development life cycle.
  4. Describe the role of professionals involved in information security in an organizational structure.
  5. Describe the business need for information security.
  6. Describe the role of an organizations' general management and IT management play in a successful information security program.
  7. Differentiate threats to information systems from attacks against information systems.
  8. Differentiate between laws and ethics
  9. Describe the role that culture can play as it applies to ethics in information security
  10. Define risk management and its role in the SecSDLC
  11. Practice the steps in identifying risks, assessing risk based on the likelihood of occurrence, and documenting risk identification and assessment.
  12. Explain why risk control is needed in today's organization.
  13. List the risk mitigation strategy options for controlling risks.
  14. Demonstrate how to maintain and perpetuate risk control.
  15. Outline management's role in the development, maintenance, and enforcement of information security policy, standards, practices, procedures, and guidelines.
  16. Explain what an information security blueprint is and what its major components are.
  17. Describe contingency planning and how incident response planning, disaster recovery planning, and business continuity plans are related to contingency planning.
  18. Define and identify the various types of firewalls.
  19. Identify and describe categories of and strategies behind intrusion detection systems.
  20. Describe scanning, analysis tools, and content filters. Identify trap and trace technologies.
  21. Identify the process of encryption, define key (PKI) terms, and identify common approaches to cryptography.
  22. Describe different approaches to biometric access control.
  23. Describe the key physical security considerations for selecting a facility site.
  24. Identify physical security monitoring devices.
  25. List aspects and components of physical security including: UPS, fire detection systems, and anti-theft security sytems.
  26. Implement information security through a project plan.
  27. Describe credentials that professionals within the security field can acquire.
  28. Describe the need for ongoing maintenance of the information security program. List three security management models.

Prerequisites:

The student should also be comfortable using Windows client operating systems and have a basic understanding of TCP/IP networking. To get the most from the class, it is recommended that the student have experience administering Windows or Unix/Linux hosts or Cisco routers and switches.

Career Opportunities:

The Network Security course advances students on a career path toward the following occupations: Chief Information Security Officer (CISO), Network Security Analyst, Senior Systems Analyst, Systems Architect, and Information Security Specialist. For higher education bound students, this course prepares them for Electrical Engineering or Computer and Management Information Systems Degree Programs.

 

 

 


Contact
with your questions, comments, and suggestions.
Terms and Conditions of Use & Disclaimer.
Ohlone College home page.