IT 710 Information Security and Assurance

This introductory security course covers a wide range of topics in the area of information and network security, privacy, and risk: the basic concepts: confidentiality, integrity and availability; introduction to cryptography; authentication; security models; information and database security; computer systems security; network security; Internet and web security; risk analysis; social engineering; computer forensics.

IT 711 Security Management and Audit

Administration and management of security of information systems and networks, intrusion detection systems, vulnerability analysis, anomaly detection, computer forensics, auditing and data management, risk management, contingency planning and incident handling, security planning, e-business and commerce security, privacy, traceability and cyber-evidence, human factors and usability issues, policy, legal issues in computer security.

IT 712 Network Security and its Application

This course focuses on network-based information and communication systems, and examines network technologies and service applications to provide the students with a comprehensive introduction to the field of network security and its application. The course covers key concepts and critical network security services including authentication and access control, integrity and confidentiality of data, routing, firewalls, virtual private networks, web security, virus protection, and network security architecture and policy development. The students are expected to understand the technical vulnerabilities of networked systems and to develop methods to eliminate or mitigate those vulnerabilities.

IT 714 Information Security and Cyber Laws

The objectives of this course is to present an introduction to the legal and ethical issues and challenges in the information age, to provide a survey of legal and ethical issues introduced by information security, and to discuss individual rights vs. national interests. A coverage of key cyber laws that impact information security and IT professionals and topics related to intellectual property, copyrights, digital forensics, e-surveillance, and e-discovery for legal evidence and lawsuits will be provided. A review of preventative legal management practices in the context of information security (including employee awareness training) will be presented.