The Proceedings of the Information Systems Education Conference 2001: §ws5    Home    Papers/Indices    prev (§ws4)    Next (§001)
    Workshop     IT Education: Best Practices
Recommended Citation: Haworth, D A and L R Pietron.  INFOSEC Made Easy--Incorporating Information Assurance Standards into Undergraduate Courses.  In The Proceedings of the Information Systems Education Conference 2001, v 18 (Cincinnati): §ws5.
CDpic

INFOSEC Made Easy--Incorporating Information Assurance Standards into Undergraduate Courses

thumb
Handout
 		Dwight A. Haworth    [a1] [a2]
Information Systems
University of Nebraska at Omaha    [u1] [u2]
Omaha, Nebraska, USA    [c1] [c2]

Leah R. Pietron    [a1] [a2]
Information Systems
University of Nebraska at Omaha    [u1] [u2]
Omaha, Nebraska, USA    [c1] [c2]

The purpose of this workshop is to facilitate the inclusion of NSTISSIC (National Security Telecommunications and Information Systems Security) recommendations into the course content of undergraduate information security courses. This particular workshop will illustrate the process of analyzing one course that will be primarily an INFOSEC course. The standard that will be employed to assess the course content and design is NSTISSIC No. 4011-National Training Standard for Information Systems Security (INFOSEC) Professionals. The participants will address the problems of translating a government-specific training standard into guidance for collegiate education. Workshop participants will simulate the process of mapping the NSTISSIC behavioral outcomes to Bloom's Taxonomy. The varied NSTISSIC behavioral outcomes will evaluated to establish a correspondence to Bloom's levels (knowledge, comprehension, application, analysis, synthesis, and evaluation) and the resulting list will be used for other activities in the workshop. Other activities include evaluating textbook contents for coverage of checklist items, determining gaps in the coverage, and developing appropriate supplementary materials. Included in the workshop presentation will be supplementary materials for the Comprehensive INFOSEC Model, OPSEC as related to private sector firms, and TEMPEST requirements. Other topics, such as evaluation materials, references, and student activities, will be covered as time permits.

Keywords: information security, information assurance, standards, curriculum

Read this presentation handout (non-refereed) in Adobe Portable Document (PDF) format. (56 K bytes)
Preview this presentation handout (non-refereed) in Plain Text (TXT) format. (1 K bytes)

CDpic
Comments and corrections to
webmaster@isedj.org