IT 320 Cybersecurity Risk Analysis & Policy

This is a projects class which will focus on understanding how to conduct a formal Risk Analysis for a customer, or corporate environment. An exploration of different Risk Assessment models (including NIST and CIS Security Controls) will provide an opportunity for students to actually collect information and document their findings. Students will interview different organizations and perform Risk Analysis through interviews, network scans, and other methods to collect the information needed. They will also explore governmental regulations including HIPAA, PCI, etc.