The aim of this course is to provide insight on modern cyber security threats and defensive controls and explore effective computer security and risk management strategies, Information Assurance (IA) practices and techniques.

The course provides a graduate level foundation in IA for a broad audience varied from middle level managers to executives with non-technical and technical backgrounds from variety of government, commercial and non-for-profit organisations.

This course will explore concepts such as layered defence mechanisms using different technologies and multiples thereof (true defence in depth), threat/risk identification and mitigation and incident response techniques. It will enable executive level management to properly understand the real world challenges faced by their Cyber Security teams today. It will also assist in the development of the frameworks, policies and the evidence based decisions required to allow teams to protect their environments efficiently and to understand the resulting costs and benefits.

After completing this course the student will be able to:

- describe the fundamental principles, key concepts, vital components, and definitions that are essential for integration effective IA;

- examine the practical considerations made when planning and establishing an organisational IA program;

- discuss preventive controls that organisations should consider when developing protection strategies to minimize cyber security risks;

- establish capabilities to detect cyber security incidents and anomalies as they occur; suggest the various controls that organisations could consider; and learn a recovery process;

- provide the relevant information required by security personnel for an effective security plan, estimation, risk management, monitoring and control; incidence response and recovery.