Select one of the options below:
CIS 563 examines the topic of information assurance (IA) and security from an enterprise risk management (ERM) perspective. Information assurance is the practice of managing information-related risks to ensure that (only) authorized parties have access to the “right” information at the “right” time. Of course, there are trade-offs to consider – organizations cannot afford to implement the most rigorous security measures for every source of information in order to protect against every source of risk. Enterprise risk management provides a framework for identifying, evaluating, prioritizing, and mitigating IT-related risks based on the organization’s objectives, strategy, risk appetite, and culture.
Students may contact cob_cis_advisor@mail.colostate.edu with questions about enrollment or eligibility to take this course.