Enterprise Architectures for Information Security
This course focuses on the analysis and management of Information Security Architectures. Information Security Architectures consist of organizational, process, and technology (e.g., data, applications, network, systems) domains. The integration and effective management of such architectures is essential to effectively respond to technical risk dynamics. The course will focus on evaluation the architectural domains and their integration. The course will rely on management research on information security, risk, IT strategic planning, and distributed computing, The student will learn the relationships between business requirements, technical requirements, and technical risk, and make appropriate choice for risk mitigation. The course will provide insights on the continuous management of the information security function in organizations.