Course Description:
This course provides a "Defense in Depth" perspective on protecting computer-based information in a modern networked environment.  The course covers a wide range of technical issues and topics including Information Assurance Technical Framework (IATF) as a security posture evaluation guideline; basics of network security; firewalls and intrusion detection; transmission security and TEMPEST; threats, vulnerabilities, and risks; network vulnerability assessment; operating system security; web security; encryption, key management, and PKI; physical and personnel security; incident handling and forensics; authentication, access control, and biometrics; wireless security; and emerging network security technologies.  The course also defines the role of all personnel in promoting security awareness.

Recommended Attendance:
This course is appropriate for functional and technical managers who require a foundation in the threats to security of information in a networked environment and emerging methods for countering those threats. 

Prerequisites:
None; however, it is strongly recommended that students take Information Assurance and Critical Infrastructure Protection (AII) and Global Enterprise Networking and Telecommunications (GEN) before taking this course.

Learning Outcomes
Students will be able to evaluate the network security posture of an organization using the IATF to determine adequate people, process, and technology security.