I00153 (I00153)
Security in organisaties*
< 2006/2007 > 04-09-2006 t/m 13-01-2007 () H
Informatica - Master variant C (2003) Thematische specialisatie Security (6 ec) Keuze informatica (6 ec)
Informatica - Master variant E (2003) Keuze informatica (6 ec)
Informatica - Master variant MT (2005) Thematische specialisatie Security (6 ec) Security (6 ec) Keuze informatica (6 ec) (6 ec)
Informatica - Master variant O (2003) Thematische specialisatie Security (6 ec) Keuze informatica (6 ec)
Informatica - Master variant O (2005) Thematische specialisatie Security (6 ec) Keuze informatica (6 ec)
Informatica - Master na HBO Artificial Intelligence variant MT (2004) Keuze informatica (6 ec)
Informatica - Master na HBO Artificial Intelligence variant O (2004) Keuze informatica (6 ec)
Informatica - Master na HBO Computer Security variant MT (2003) Thematische specialisatie Security (6 ec)
Informatica - Master na HBO Computer Security variant O (2004) Thematische specialisatie (6 ec) Keuze informatica (6 ec)
Informatica - Master na HBO Embedded Systems variant MT (2003) Keuze informatica (6 ec)
Informatica - Master na HBO Embedded Systems variant O (2004) Keuze informatica (6 ec)
Informatica - Master na HBO Information Systems variant MT (2003) Keuze informatica (6 ec)
Informatica - Master na HBO Information Systems variant O (2004) Keuze informatica (6 ec)
Informatica - Master na HBO Software Construction variant MT (2003) Keuze informatica (6 ec)
Informatica - Master na HBO Software Construction variant O (2004) Keuze informatica (6 ec)
Informatiekunde - Master (2004) basis masterprogramma Informatiearchitectuur (6 ec)
Informatiekunde na het HBO (2003) Masterprogramma "Informatiearchitectuur" (6 ec) (6 ec)
omvang
6 ec (168 uur) : 80 uur plenair college, 0 uur groepsgewijs college, 0 uur computerpracticum, 0 uur 'droog' practicum, 8 uur gesprekken met de docent, 20 uur onderling overleg met medestudenten (werkgroepen, projectwerk e.d.), 60 uur zelfstudie
investering
6 ec * 28 u/ec + #std * (1 + 6ec * 0.15 u/student/ec)
inzet tentatief
speciale web-site
/~martijno/secorg/

 

Security is about regulating access to assets. Crucial questions are: Who are you? and: Should you be doing that? These questions cannot be answered without taking the organisation in which security systems are deployed into account.

The course introduces the basic notions and techniques in the area of information security. The emphasis lies on assessing risks and impacts of security related threats and on planning, managing and evaluating security controls such as policies, procedures, and technical counter measures.

Leerdoelen

  • To develop a suitable level of paranoia, needed for designing and deploying security sensitive IT applications
  • To learn how to manage risk while designing and deploying IT systems within an organisation
  • To learn how to write and enforce good security policies
  • To learn some basic techniques for evaluating security solutions

Onderwerpen

a

  • security in context
  • Assets and threats
  • Risk, vulnerability, control, attack, damage
  • Risk assessment and risk management
  • Methods/tools for risk analysis
  • Attack trees
  • Security policies
  • Roles, Classifications
  • Code of Practice for Information Security (BS7799)
  • Evaluation of Information Security
  • Business continuity planning anf incident recovery
  • CERTs
  • Legal Aspects

Werkvormen

The course consists of 2 hours of lectures, and two hours of exercise courses per week. The latter will involve small individual exercises and some larger group exercises.

Vereiste voorkennis

The bachelor security course Security.

Tentaminering

Mandatory assignments and mandatory written exam.

Combinatiemogelijkheden

  • Software security
  • Network security
  • But also appropriate courses related to computers and law are an option.

Literatuur

Jan Killmeyer Tudor -
Information Security Architecture: An Integrated Approach to Security in the Organization -
Auerbach publishers (1st or 2nd edition)


Evaluatie: studentenquêtes ; geen docentevaluatie bekend Rendement: 35 begonnen, echt meegedaan, geslaagd met 1e kans, geslaagd totaal
Q: