IN PARTICULAR:

Key fundamental concepts underpinning information security management in particular the: confidentiality, integrity, availability, risk, threat, vulnerabilities and security controls. Business environments within which information security needs to be managed e.g implications of electronic commerce, outsourcing, organizational issues. Technical aspects of significant threats, vulnerabilities and security controls e.g malicious software, the Internet, security products, cryptography. Categorization, operation and effectiveness of security control. Current national and international legislation and regulations that impact upon information security management in the Iran. Systems based attacks Viruses and Worms attacks