This class is intended for users who want to learn more about the over-arching guiding principles for Information Security at Georgia Tech. The class is a core component of the Information Security Certificate program. During the session, we will cover several topics related to Information Security and how they specifically relate to Georgia Tech including:

• The information security concepts of C I A (Confidentiality, Integrity, Availability) and risk management and how they apply here at Tech. 
• Overview of the various regulatory requirements that Tech must adhere to (FERPA, GLBA, HIPAA, PCI). 
• Overview of the CNUSP and DAP and what they mean to the Georgia Tech community 
• Overview of the Georgia Tech Security Plan & how the Plan addresses protection of people, data, and resources 

 The instructors will draw from real world case studies that have occurred at Georgia Tech.

Objectives:

At the end of the class, students will:

1. Have an understanding of the C-I-A triad  
2. Have an understanding of the regulatory requirements Georgia Tech is obligated to meet 
3. Have an understanding of the two key Institute Information Security policies & how they apply to the Georgia Tech community  
4. Have an understanding of the Georgia Tech Security Plan and the approach taken to mitigate risk to campus IT resources