This course provides advanced knowledge on organizational computing security and contemporary issues in cybersecurity. Topics include trusted computing and multi-level security management, including risk assessment, IT controls, security auditing, along with technical networking and communication security (e.g., Internet security protocols and standards, and Internet authentication applications).
The course adopts a practical, hands-on approach to examine several fundamental security technologies learned from Intro to information security (i.e., LIS4774) such as firewalls, intrusion detection systems, operating systems security, vulnerability assessment scanners as well as the legal and ethical aspects of penetration testing and hacking. Students will also have an opportunity to advance their critical thinking and troubleshooting skills in a sandbox solving current cyber threat issues.
- Demonstrate knowledge of the concepts and terminology of information security management and risk assessment,
- State the importance of information security controls, plans and procedures in the modern socio-technical systems,
- Define and explain the basic types of physical and infrastructure security,
- Assess human resources security and security auditing, and employ user-centered design and configuration in security systems,
- Articulate and communicate legal and ethical aspects of organizational security practices,
- Demonstrate troubleshooting and critical-thinking skills with the tools and techniques needed to secure network-based communication systems,
- Define career opportunities, and apply innovative approach to address cyber threats as information security professionals/entrepreneurs for the information security industry.