This course provides the foundation for managing information security through the effective role of governance and ethical behavior. Students explore the importance of satisfying regulatory requirements like Sarbanes/Oxley and HIPAA, preparing for financial and security audits, and ensuring data privacy. The course delves into security activities, methodologies, and procedures, focusing on the detection and reaction to threats, and the protection of information assets. Through real-world case studies, students will examine pre- and post-incident procedures, technical and managerial responses, and the planning and staffing functions essential to information security. Students must be a Junior or Senior or obtain permission from the instructor. Spring even years.