This course introduces students to the advanced study of Information Security Policy and Governance at the organizational level. Students will gain an understanding of standards and policies as well as international, national and local regulatory requirements governing organizational information technology systems. The course will address relevant data protection legislation, industry best practices, risk management techniques and develop the necessary skills to evaluate and measure organizational compliance and to determine appropriate organizational strategy to best support the information security needs.