IS 464 Policy and Audits

This course investigates the policies that govern information security, and how systems can be audited to ensure compliance with those policies. Policies are the process in which technical controls are codified into standards and practices that a company or a governmental organization will use to define controls, and assess compliance of those controls in the working environment. Auditing is the process in which electronic systems are reviewed for compliance with the policies promulgated by senior management. This course focuses on key aspects of information management policies and auditing to ensure compliance with standards based policies and practices. Students will immediately be able to use the information gained in this course to write policies and audit for information systems compliance.