This is a comprehensive Information Systems Security management course covering the eight basic principles of Information Assurance and Information Systems Security. The course follows the Common Body of Knowledge (CBK) convention established by the International Information System Security Certification Consortium, Inc. (ISC)2. This course serves as an introduction to the eight domains of information systems security with the emphasis on management issues. It provides the foundation of information systems security and the methodologies that organizations apply to analyze and achieve their security goals. Students learn about significant computer security laws and regulations, system security engineering, the development of effective security policies, system access controls, network security, encryption and security models. The course also covers specific security measures to include, but not limited to, physical security controls, network security, cloud security, telecommunications, and cryptography. Information covered includes contemporary issues of cybercrime, and business continuity and disaster recovery planning. The course applies a systems approach to security issues to analyze and develop security solutions. All topics are discussed in the context of a total enterprise-wide framework. Prerequisite: ICT 4300.