Module 1 - Introduction to Information Protection

Module one (Introduction to Information Protection) is an introduction to information protection principles and provides basic security concepts for undergraduates and students enrolled in an introductory information systems course. Each major issue presented in this module is detailed further in its own module that can be supplemental to courses throughout a business and information systems curriculum. This module is designed to be used as part of a freshman or sophomore level Management Information Systems course, such as the recommended DPMA course CIS/86-1, (Introduction to Computer Information Systems.)

Objectives:


The two primary objectives of this module are to:


bullet

Introduce business and non-business majors to basic information security problems; and

bullet

  Identify the primary areas that deal with information security.

Upon successful completion of this module the student will understand basic information security problems and will be able to identify areas where additional study may be needed.

 

Following this module, the student would progress to PC/Workstation Security module or the Security Fundamentals module that lays the foundation for advanced study in systems security.

 

Learning Objectives


Upon completion of this module, the student should be able to:

bullet

  Understand the need for security in an organization;

bullet

  Identify basic security problems;

bullet

  Understand ethical issues involved with the use of information systems security; and

bullet

  Identify major areas in security management for additional study.

 

Prerequisites


No previous study or lab experience is assumed. The PC/Workstation module may be taken before, concurrently, or following this module.


Topic Outline: 
Information Protection


I.        Information as a Corporate Resource

            A. Security As Part Of The Total Organization

            B. Understanding The Organization

            C. Identifying Sensitive Data

            D. Controlled Sharing Of Information And Resources

II.        Basic Information Systems Security Problems

            A. Natural Disasters

            B. Accidental Problems

            C. Malicious Threat

III.      Ethical Issues

            A. Responsible decision-making

            B. Confidentiality & Privacy

            C. Piracy

            D. Fraud & Misuse

            E. Liability

            F. Copyright

            G. Trade Secrets

            H. Sabotage

IV.      Areas of Information Systems Security Study

            A. PC/Workstation Security

            B. Security Fundamentals

            C. Information Security Laws & Legislation

            D. System Security

            E. Communications Security

              F. Corporate Security Management