SEC 261
Information Security & Assurance Administration
Spring 2010 - Syllabus
COURSE DESCRIPTION :
This course will teaches students how to secure any network, large or small. The student will learn the realities network administrators actually face on the front lines, where they are constantly under attack, and don't always get the support they need from their organizations. The course will addresses many facet of network security, including defining security models, access control, Web/DNS (domain network service)/email security, remote access and VPNs (virtual private networks), wireless LAN/WAN (local area networks and wide area networks), security, day-to-day monitoring and logging, attack response, and more. The student will learn how to systematically identify today's most widespread security mistakes and vulnerabilities, offering realistic and up-to-date solutions. The student will then integrates these techniques in an end-to-end case study, showing how to redesign an insecure enterprise network for maximum security, one step at a time.
PREQUISITE: SEC 105 or CRJ105
REQUIRED MATERIALS:
- Management of Information Security, Herbert Mattord, Michael Whitman, 2nd edition, Course Technologies, ISBN: 978-1-4239-0130-3
- Flash Drive
- Spirit to Work Hard and Learn
STUDENT LEARNING OUTCOMES
Information security-driven topic coverage is the basis for this course and will benefit students in the information security and business fields alike. Management of Information Security, provides an overview of information security from a management perspective, as well as a thorough understanding of the administration of information security. This course will cover the CISSP Common Body of Knowledge (CBK), especially in the area of information security management. The students will learn and understand how to maintain the industry currency and case studies examples will be introduced in this course, providing real-life applications for the topics covered.
The student will learn how to implement the following areas :
- Management of Information Security
- Planning for Security
- Planning for Contingencies
- Information Security Policy
- Developing ofthe Security Program
- Security Management Models and Practices
- Risk Management: Identifying and Assessing Risk
- Risk Management: Controlling Risk
- Protection Mechanisms
- Personnel and Security
- Law and Ethics
- Information Security Project Management
METHODOLOGY
This course is composed of lectures, class discussions, demonstrations and hands-on assignments. Lectures will clarify, reinforce, and expand upon the readings from the text. Significant learning will be accomplished outside the normal class hours through computer assignments. These assignments will reinforce the lecture and demonstrations of course materials. Those willing to gain knowledge beyond the normal scope of the course will be given an opportunity to explore some advanced topics.
ACADEMIC INTEGRITY POLICY
Holyoke Community College is committed to academic integrity—the honest, authentic and independent pursuit of knowledge. As members of the academic community, students are expected to be responsible for all of their own academic work without dishonesty or deception; joint work is legitimate only when assigned or approved by the instructor. HCC faculty members will take reasonable precautions to eliminate opportunities for academic dishonesty. Violations of academic integrity include, but are not limited to, the following general categories:
- Using or obtaining unauthorized assistance in any academic work
- Copying from another student’s examination.
- Communicating with another student or using electronic communications devices during an examination.
- Using notes, books or aids of any kind during an examination when prohibited by the instructor. (Students with disabilities should discuss educational accommodations with the Office for Students With Disabilities and Deaf Services.)
- Obtaining prior knowledge of examination questions or obtaining or possessing a stolen copy of an examination.
- Using another student to take an examination for oneself.
- Submitting another student’s class assignment as one’s own.
- Providing fraudulent assistance to another student
- Completing an academic assignment, paper or project or taking an examination for another student.
- Giving answers to or sharing answers with another student during an examination.
- Sharing answers during an examination by using a system of signals.
- Submitting the work of others as one’s own (plagiarism) or representing reviously completed work as current
- Submitting a paper, lab report or other academic work for credit, which includes words, sentences, ideas, data or creative work of others without enclosing them in quotation marks, without paraphrasing them or without acknowledging the source.
- Submitting work copied in any medium from another individual or from the Internet.
- Submitting the same paper or academic assignment to other classes without the permission of the instructors. Furnishing false information to any official or faculty member or fabricating data in support of an academic assignment
- Forging a signature or falsifying or altering an academic or college record or document in any way.
- Falsifying bibliographic entries.
- Submitting academic materials, reports or projects containing falsified or fabricated facts, data or results.
COURSE ASSESSMENTS
Testing
Two (2) one hour exams/projects, several quizzes and a final exam/project.
Attendance
Online student have not submitted assignments in a timely fashion (three assignments past suggested date) a AW can be given. It is recommended that students participate in bulletin board and chat discussions.
Assignments
This course requires a student to utilize a microcomputer extensively during the semester. Research and assignments are to be typed using a word processing package, and other assignments using other appropriate software. All assignments must be neat and of the highest quality. All assignments will be graded. I will drop the lowest assignment grade. All assignments are due the first class of the week following the assigned date.
Written Assignments
All written assignments should be in your words not quotes from the book. All assignments must have a cover sheet with your name, assignment number, class and section number and what type of assignment it is (eg)
Wtritten Assignment Week 3 - Due first class of week 4
Joe Student
Week 3
CSI XXX-01
AssignmentsResearch/Lab Assignments
All research assignments should be in your words not just web pages from the site. All Research must have a cover sheet with your name, research assignment number, class and section number and what type of assignment it is (eg)..
Research Assignment Week 3 - Due first class of week 4
Joe Student
Week 3
CSI XXX-01
ResearchReading Assignments
Students are held accountable for all reading assignments. Some materials may not be discussed in class, but will be reflected in exams and quizzes. All reading assignments are due the first class of the week assignmed (eg).
Assignment Week 3 - Due first class of week 3
Make-Ups
There are NO make-up exam given, unless arrangements are made prior to the exam date. There are NO make-up quizzes given, however I will drop the lowest quiz grade that you receive.
Quality
All oral and written assignments should be accurately prepared and be of the highest quality. Students should demonstrate the ability to do research and analyze the subject matter.
EXAM SCHEDULE:
Exam # 1: Week # 6
Exam # 2: Week # 10
Final Exam: As schedule by Registrars Office - Projects are due the last class.GRADES
Two (2) Hourly Exams 20% Final Exam/Project 25% Wttten Assignments 20% Research/LAB 15% Quizzes 10% Attendance/Participation 10% 100%
GRADING
59.99 Or Under F 60 - 64.99% D 65 - 68.99% D+ 69 - 71.99% C- 72 - 75.99% C 76 - 78.99% C+ 79 - 81.99% B- 82 - 85.99% B 86 - 88.99% B+ 89 - 91.99% A- 92 - 100% A The Instructor reserves the right to change the context and structure of the course syllabus via an announcement in class or Internet.
Professor Casey Storozuk
Office KBC 505
Phone: 413-552-2429