Principles of Information Security

This course examines information security principles and practices. Students will analyze concepts such as confidentiality, integrity, and availability (the CIA Triad), and learn how these principles guide the protection of systems and data across diverse environments. Topics include risk assessment, threat and vulnerability analysis, asset classification, and the implementation of administrative, technical, and physical controls. Throughout the course, students will engage with real-world scenarios and industry-relevant frameworks to understand how security decisions are made and applied in organizational contexts. Key areas such as identity and access management, cryptography, secure software development, network defense, and incident response are introduced to build a broad understanding of the security landscape. While not a certification prep course, the curriculum aligns with foundational competencies found in the CompTIA Security+ certification, making it a strong starting point for further professional development in cybersecurity. Recommended Pre-requisites: ICT 4005 or practical experience in Information Technology principles and practices.