BAD 64083 F05 Kotulic

BAD 64083-001 [R] FALL '05
INFORMATION SECURITY: A MANAGERIAL PERSPECTIVE
TENTATIVE COURSE OUTLINE

Class Schedule: 7:00-9:30 PM [R] Room BSA A404

* * * * 09/02/05 REV. 01* * * *

Web Site: Http://www.personal.kent.edu/~akotulic

Office Hours: Tues & Thur 1:30-2:30 PM & 4:45-5:45 PM, Wed 2:00-3:00 PM

Other times by appointment

Textbook: Management of Information Security, 2004. Whitman & Mattord. Thomson-Course Technology. ISBN 0-619-21515-1.
Course Objectives
The course is designed to provide a broad view of the field of information security [Terminolgy, History & Technologies]. Additionally, the basic principals and mechanisms[Logical and Physical] that managers are required to understand in order to implement and manage an information security program will be discussed. The course will provide an introduction to the threats directed at the vulnerabilities of organizational information resources. The primary objective is to introduce the student to the basic tools available to develop and administer an information security risk management program capable of delivering appropriate countermeasures to deal with identified threats and vulnerabilities. The course will provide an introduction to the hardware, software, and firmware that are becoming necessary for managers to understand in order to make more informed decisions about information security program requirements.

The classroom activity will include lectures, visits to Internet sites, student assignments, i.e., in class case analysis, article/chapter topic discussions and supplemental homework assignments. This approach will be used in order to enrich the learning environment.

The breadth of the course content demands a reading intensive environment. The students will be required to read the assigned material prior to the class meetings. Additionally, the student should be prepared to discuss the assigned materials during the class meetings.

General Topic Coverage
The topics that will be covered are necessary to understand how the Security Systems Development Life Cycle (SecSDLC) methodology can be used to sucessfully implement an information security program. Based on the class demographics, selected areas from the SecSDLC methodology will be covered in more depth. This will be discussed during the initial class meetings.

Learning Activities
Lectures
Visits to Web sites
Selected review questions, Exercises and Case Exercises
Selected white paper readings and analysis
Emphasis on class discussion of assignments

Grading Policy: The final grade for this course will be based on the following;

After rounding your numeric score to the nearest integer, your course letter grade will be assigned according to the scale: A = 90-100; B = 80-89; C = 70-79; D = 60-69; and F = 0-59.

PLEASE NOTE: I will NOT be using the Plus/Minus Grading system in this class.

Class Attendance: Students are expected to attend all classes. If you are not in class you cannot contribute to the overall class experience. If you are not in class you cannot earn class Discussion points. Additionally, In case of borderline grades, attendance (or lack of) will be used in the determination of the final grade.

Assignments: The chapters, articles and/or white papers that are assigned should be read before coming to class. The student should be ready to contribute to the class by being ready to respond if called upon to lead a discussion based on the specific topic under review. Additional details will be explained in class. IN CLASS GROUP PROJECTS
Each individual will be assigned to temporary group(s) that will have assigned topics that will be discussed in class.

Assignment There will be A MAXIMUM of (3) in class group discussion projects assigned during the semester. The final details will be furnished at a later date. This is necessary due to the impact of class size on the number and types that will be assigned.

Writing Standards: Students enrolled in this course are expected to use literate and effective English in their speech and writing. All papers submitted must be neat and well-written; grades on written work will be based on expression as well as content.

QUIZZES
There will be no quizzes.

COLLEGE AND UNIVERSITY POLICIES

Prerequisites: Students attending the course who do not have the proper prerequisites risk being deregistered from the class.

Course registration: Students have responsibility to ensure they are properly enrolled in classes. You are advised to review your official class schedule (using Web for Students) during the first two weeks of the semester to ensure you are properly enrolled in this class and section. Should you find an error in your class schedule, you have until Sunday, September 11, 2005 to correct it with your advising office. If registration errors are not corrected by this date and you continue to attend and participate in classes for which you are not officially enrolled, you are advised now that you WILL NOT receive a grade at the conclusion of the semester for any class in which you are not properly registered.

Academic honesty: Cheating means to misrepresent the source, nature, or other conditions of your academic work (e.g., tests, papers, projects, assignments) so as to get undeserved credit. In addition, it is considered cheating when one cooperates with someone else in any such misrepresentation. The use of the intellectual property of others without giving them appropriate credit is a serious academic offense. It is the University's policy that cheating or plagiarism result in receiving a failing grade for the work or course. Repeat offenses result in dismissal from the University.

Course withdrawal: For Fall 2005, the course withdrawal deadline is Sunday, September 11, 2005. Withdrawal before the deadline between (September 12-November 06, 2005) results in a "W" on the official transcript; after November 6, 2005 a grade must be calculated and reported.

Students with disabilities: University policy 3342-3-18 requires that students with disabilities be provided reasonable accommodations to ensure their equal access to course content. If you have a documented disability and require accommodations, please contact the instructor at the beginning of the semester to make arrangements for necessary classroom adjustments. Please note, you must verify your eligibility for these through Student Disability Services (contact 330-672-3391) or visit www.kent.edu/sds for more information on registration procedures).

E-mail Accounts: Effective Fall '02 Student Kent State University e-mail accounts are the university's official means of communication with students. Students should check their e-mail accounts on a periodic basis (at least twice a week) for university related items.

I will only send e-mail to a student e-mail account. If you want e-mail sent to a different account you must set up your Kent State account to forward your e-mail. There will be no exceptions to this policy.

*** PLEASE NOTE **** Only send e-mail to me at akotulic@kent.edu I MAY NOT BE ABLE to respond, in a timely manner, to your e-mail if sent to akotulic@bsa3.kent.edu

PLEASE come to class on time and stay until the class has ended. Unless you have a legitimate reason for doing so, do not come to class late or leave early. There are other students who want to be in class and it is not fair to disrupt them by the noise and disturbance of late arrivals and early departures. Never ridicule anyone for asking a question. There is no such thing as a stupid question but it is stupid not to ask questions!

Use of a CELL PHONE or PAGER during class is not permitted. PLEASE shut them off before coming in the class room or place the ringer on silent or vibrate status.

The instructor reserves the right to modify this syllabus.

BAD 64083-001 FALL 2005 Schedule

Author: Andrew G. Kotulic.

RETURN TO GATEWAY..

Web Site: