Information Security Policy Sanjay Goel University at Albany, SUNY

1. Information Security Policy Sanjay Goel University at Albany, SUNY

2. Course Outline Unit 1: General Policy and Law Issues • Introduction to Policy, Nomenclature, and Definitions • Unit 2: Information Security Policy • Definitions, Needs, and Responsibility Unit 3: Creation of Policies, Part I • Network, Wireless, Web, Email, Authentication & Access Control and File-sharing Unit 4: Creation of Policies, Part II • Software Development, Disaster Recovery, Data, Audits, and Physical Security Unit 4: Enactment of Policies • Compliance, Enforcement, Refinement

3. Unit OutlineInformation Security Policy Module 1: Purpose Module 2: Life Cycle Module 3: Terminology Module 4: Structure Module 5: Summary

4. Learning ObjectivesInformation Security Policy Student should be able to: • Gain a background in information security policy • Comprehend the need for information security policies • Understand the security policy life-cycle and its processes • Use basic security policy terminology and nomenclature • Know the overall structure of an information security policy