Course Descriptions
Information Assurance
SEC 6010
Planning for Information Security
3 credits
This course addresses the necessity of developing accurate Business Continuity Plans and the security implications. Within this scope, emergency response, business resumption, and disaster recovery will be evaluated as critical components for the process. Through a review of the planning process, risk impact assessment and a variety of methods and models will be considered to assist in understanding risk as well as variety of RISK Assessment frameworks.
SEC 6015
Cloud Security Essentials
3 credits
This course introduces students to cloud security. This course is designed for students with little to no practical cyber security experience or background. This course provides students with basic terminology, concepts and security philosophy for cloud. This course introduces students to:
- Cloud security defensive and offensive protection;
- Identify the security benefits and responsibilities when using cloud;
- Understand access control and access management vital for cloud;
- Understand the different data encryption methods to secure sensitive data;
- Describe and design secure network access to cloud; and
- Determine which services can be used for security logging and monitoring.
Topics include an overview of information security frameworks, traditional and cloud security, network infrastructure security, security and cryptography, information security policy, and defense in depth. Understand cloud security from both a tactical and strategic perspective. Students are introduced to multiple cloud platforms, deployment models and protection tools, techniques, and strategies.
SEC 6030
Operating System and Computer Systems Security
3 credits
The student’s basic network and operating system skills will be expanded to include planning, implementation, and auditing of a system’s security package. The following topics are covered: Security Principles (Windows 2000 Security Architecture, Linux Security), Account Security (Securing Accounts, Passwords, Password Aging, and Verification of System State), File System Security (Windows 2000, XP File Security, NAS Storage Security), Accessing Risk (Key loggers, Sniffers, Port Scanning), Risk Analysis (Viruses, Patches, Packaging Techniques), and Encryption.
Prerequisite(s): SEC 6010
SEC 6040
Web and Data Security
3 credits
This course will help students build a security policy and SOP for an organization which is implementing a new network, applications and web infrastructure. Topics include the following: Security Education and Advisory, Risk Management, Threats to IT Assets, Encryption, Standards and Compliance, and Security Testing and Implementation.
Prerequisite(s): SEC 6010
SEC 6050
Security Data Analytics
3 credits
This course covers the concepts, drivers, challenges, and techniques for developing business analytics for security solutions. Various supporting technologies will be discussed. Also covered are techniques for managing the project life cycle in the design and development of analytic solutions using best practices. Different methods of information delivery such as query and data analysis, visualization dashboards, ODS vs OLAP, and trending scorecards are explored.
Prerequisite(s): SEC 6010
SEC 6060
Incident Handling and Response
3 credits
Incident Handling and Response: This course will teach students the Incident Response foundation. Students will learn how to help IT staff detect, respond to, and recover from security incidents. These types of plans address issues like cybercrime, data loss, and service outages that threaten daily work. Students will build incident response plans, evaluate security policy and plan, assigning roles and responsibilities, creating and using an effective incident response operation, and how to monitor its performance. Students will build skills and knowledge in these areas by performing exercises that simulate real-world problems.
Prerequisite(s): SEC 6010
SEC 6070
Penetration Testing
3 credits
This class builds upon ethical security practices by performing prescribed techniques while increasing the student's knowledge, skills, and abilities. Topics covered include ethics, standards, methodologies, tools/techniques, and legal ramifications. Summative report development and presentations of findings will be included.
SEC 6080
Industrial Control Systems (ICS) Security
3 credits
Industrial Control Systems are the heart of America's vital power, water, and manufacturing facilities. The security of these systems are often linked with generic operating systems like Microsoft Windows and are often connected to the Internet and should be under greater scrutiny. Students will research how ICS functions, the critical infrastructure that they support as well as steps that can be taken to improve the overall security of ICS systems.
SEC 6082
SCADA Architecture
3 credits
This course provides students with an understanding of the SCADA and ICS environments architecture from a security architecture perspective. The security emphasis includes strategies for patching, upgrading, backup, recovery, and business continuity issues. The course also provides students with the knowledge needed to identify SCADA components and how those components function as a system.
SEC 6084
SCADA Risk Management and Auditing
3 credits
This course teaches students the necessity of performing risk management and auditing on SCADA and ICS systems and environments. It helps students develop risk management and auditing frameworks, as well as the core skills necessary to audit a SCADA system/environment and to manage risks.
SEC 6086
SCADA Security Awareness and Standards
3 credits
SCADA Security Awareness and Standards is a course designed to teach students to assess, develop, and deliver a SCADA/ICS security awareness programs within an organization. The course also provides students with information regarding various industrial standards related to SCADA systems and environments.
SEC 6090
Topics in Information Assurance
3 credits
This course is an intensive study of selected contemporary topics in Information Assurance. Emphasis is placed on research in areas pertinent to the current IT environment. Given the rapidly changing landscape of present-day information systems and technology, it is entirely appropriate to focus on recent and novel developments in the field. The focus for each section will vary, and in a ''Directed Study'' format, will be tailored specifically to the career and vocational interests of the student. When scheduled in lecture/seminar form, the topical subject matter will change at each offering; students should refer to the course listing bulletin for the current topic.
SEC 7050
Information Assurance Integration/Capstone
3 credits
This course combines the three integration efforts toward a) integrating the enterprise, b) integrating the IS function, and c) integrating IS technologies. Prerequisite(s): IST 7000, IST 7020, IST 7040, IST 7060, IST 7100, SEC 6010 and at least two courses within the Information Assurance concentration
SEC 8100
Information Assurance Integration/Capstone Course
3 credits
This course combines the three integration efforts toward a) integrating the enterprise, b) integrating the IS function, and c) integrating IS technologies.
Prerequisite(s): IST 7000, IST 7020, IST 7040, IST 7060, IST 7100, SEC 6010 and at least two courses within the Information Assurance concentration