Information Systems Security Management

Module Code Semester Type Hours Laboratories / Seminars   ECTS Instructors
Information Systems Security Management ΗΥ360 8 Compulsory I.S. 4 -
5
Magkos M. - Tsohou A.
Description:
Conceptual foundation: assets, threats, vulnerabilities, risk, availability, integrity, confidentiality. Managing information security in the digital era. Information security governance frameworks for organizations: ISO 27001, COBIT and other security standards (ISO 27002, ISO 27005). Information security risk assessment and management: information security requirements, risk analysis methods (OCTAVE, CRAMM, SBA scenario). Information security countermeasures: security policies and regulations, access control and authentication policies, advanced authorization policies, network security policies. Users‘ compliance with information security policies: relevant research and non-compliance factors, social engineering, personal internet use at workplace, passwords‘ behavior. Business continuity management, IT disaster recovery planning. Personal data protection directives and regulation
Bibliography:
  1. "Ασφάλεια Πληροφοριακών Συστημάτων", Σωκρ. Κάτσικας, Δ. Γκρίτζαλης, Στεφ. Γκρίτζαλης, Εκδόσεις ΝΕΩΝ ΤΕΧΝΟΛΟΓΙΩΝ, ISBN 960-8105-57-9, 2004
  2. "Ασφάλεια ασυρμάτων και κινητών δικτύων επικοινωνιών", Καμπουράκης Γ., Γκρίτζαλης Στεφ., Κάτσικας Σωκρ. Κ., Εκδόσεις Παπασωτηρίου, ISBN 978-960-7530-81-3, 2006
Additional material:
You are here: Studies Undergraduate Studies Undergraduate Modules Semester 8 Modules Semester 8 Information Systems Security Management