CIT 252 : Critical Security Controls
This course provides a foundation for access control and identity management methods used to secure networks, data, and information systems in both the public and private sectors and in organizations large and small. Topics include data classification, identification, authentication, authorization, and accounting protocols and services for information systems whether local, remote, or cloud-based architectures. Security controls for access control including tokens, biometrics, and the use of public key infrastructures (PKI) will also be covered. Prerequisite: CIT 150 with a grade of C or better, or permission of the instructor. Three lecture hours per week. Instructional Support Fee applies. Gen. Ed. Competencies Met: Critical Thinking, Information Literacy, and Scientific Reasoning and Discovery.
Course Outcomes
1. Define appropriate technical solutions to mitigate risk and threats in an IT infrastructure.
2. Implement remote access, PKI, and encryption solutions to ensure confidentiality, integrity, and availability.
3. Analyze how information classification standards impact IT infrastructure access control requirements.
4. Develop an access control policy framework using best practices.
5. Analyze the consequences of failed access controls.