PA 5248 DATA AND INFORMATION SECURITY

This graduate-level course provides an in-depth understanding of data and information security, along with the associated risks of managing information systems and solutions. The course explores how organizations can identify and mitigate data and information security risks, and how to protect such systems from breaches, including cybersecurity and insider threats. Additionally, this course offers a methodology for identifying an institution’s information technology assets, with particular focus on computer networking, determining the necessary level of protection required, available resources and frameworks, and developing techniques for creating effective security implementation plans.
Students will examine key topics, including network and information security standards and frameworks (ex. NIST, HIPAA, CMMC, PCI), understanding wired and wireless networking concepts, risk management concepts through risk profiles, threat vectors, and attack surface analysis, the intersection of data security in the era of big data and artificial intelligence, and generative artificial intelligence.
Hands-on and virtual exercises utilizing real-world security utilities and practices will enable students to apply data, network, and information security principles to practical public management problems.