Enterprise Information Security Architectures (MIS646)

This course focuses on the analysis and management of Information Security Architectures. Information Security Architectures consist of organizational, process, and technology (e.g., data, applications, network, systems) domains. The integration and effective management of such architectures are essential to effectively respond to technical risk dynamics. The course will focus on evaluating the architectural domains and their integration. The course will rely on management research on information security, risk, IT strategic planning, and distributed computing. The student will learn the relationships between business requirements, technical requirements, and technical risk, and make appropriate choices for risk mitigation. The course will provide insights on the continuous management of the information security function in organizations.