Faculty Contact Information:
Norm Bourque, Associate Professor,
University of Maryland University College.
Primary email - bourquen@yahoo.com
|
|
Consultation:
|
Office hours - before and after class, or by appointment. See course schedule.
|
|
Required Texts and Readings:
|
Whitman, M.and Mattord, J. (2003). Principles of Information Security. Boston, MA: Thompson - Course Technology.
|
|
Supplementary Readings:
|
The standard for papers in the graduate program is the APA style. All participants in this course and all graduate INSS, MGMT, PUAD, and ECON courses should have a copy of the style guide: American Psychological Association. (2001). Publication Manual of the American Psychological Association, 5th Edition. Washington DC: Author. All graduate students should be prepared to utilize the UMUC online library at . The library contains a large number of full text academic journals that are free of charge and immediately available. The library homepage also contains a number of links related to improving students' research and writing skills.
|
|
Recommended Journals:
|
Publications of the various professional societies (such as ACM -- the Association for Computing Machinery, the IEEE Computing Society, and the various management professional societies) are strongly recommended. In addition, there are many trade journals (such as eWEEK) that MIS professionals should become familiar with, many of these being published both weekly and on-line.
|
|
Course Description:
|
3 semester hours credit. Prerequisites: Either INSS 510, INSS 520, INSS 530, or permission of the Program Director. Explores security policies, models, and mechanics for secrecy, integrity, and availability. Topics include operating systems models and mechanisms for mandatory and discretionary controls; data models, concepts, and mechanisms for database security; basic cryptography and its applications; security in computer networks and distributed systems; as well as control and prevention of viruses and other malicious programs.
|
|
Course Goals:
Upon completion of the course, participants should:
1. Understand the threats, vulnerabilities and risks with an information system infrastructure
2. Understand the security issues in network systems
3. Have a basic understanding of cryptography
4. Be familiar with cryptographic technologies including symmetric key cryptosystem and asymmetric key cryptosystem
5. Have a basic understanding of firewalls, routers and protocols in communication systems
6. Be familiar with Risk Management practices
7. Be able to distinguish between business continuity and disaster recovery
8. Develop an understanding of laws and ethics regarding information systems security
|
|
Course Objectives:
At the conclusion of this course the student will be able to:
1. Identify the resources of an information system that must be protected
2. Distinguish information security from operations and physical security
3. List potential security threats, vulnerabilities and risks of information systems, particularly on the network
4. Define and discuss the role of cryptography
5. Evaluate various data encryption methods
6. Identify various control mechanisms used to prevent, detect and correct error in an information system
7. Define the responsibilities of Security Administrators
8. Be able to develop a disaster recovery plan for an information system
9. Develop standards, guidelines and procedures to implement security policy in an information system
|
|
Grading Information:
Grades for this course will be assigned as follows:
A 92%
B 80 – 91%
C 70 – 79%
F Below 70%
Please note that Bowie State University does not use "D" for graduate students. The grade F(a) is used to designate academic failure. F(n) is used to designate failure for non-completion. Grades of Incomplete or Withdrawal are governed by UMUC-Europe policies. For further details, please refer to the UMUC-Europe Graduate Catalog, available in your local Education Center or online at http://www.ed.umuc.edu/general_info/publications/catalogs.
|
|
Course Requirements:
Graduate school at the masters level focuses on helping students obtain the education needed for success as professionals in their chosen fields. Thus, UMUC-Europe graduate programs and Bowie State University share common goals of promoting excellence in academic scholarship through thoughtful inquiry and the skillful application of knowledge and theory for the betterment of society.
In order to maximize your graduate educational experience in general, and this course in particular, you are required to:
Participate in classroom discussions - 10% of grade.
Complete two case study summaries and critiques. - 20% of grade.
Prepare and present orally and visually a Computer Security Plan for a Fortune 500 company of your choice, including disaster recovery - 30% of grade.
Complete a written midterm examination - 20% of grade.
Complete a written final examination - 20% of grade.
|
|
Description of Course Requirements:
You will be expected to come to class prepared to engage in all discussions in a professional and informed manner. Usually this requires two to three hours for every hour of class. THIS INCLUDES THE FIRST FOUR CLASSES!!
Note: You will prepare at least one question per chapter, and be prepared to ask that question at the class that chapter is covered.
You will be required to conduct professional-level research, including appropriately citing works of others and avoiding plagiarism. Plan on committing approximately 150 hours over the duration of this course to producing professional level deliverables, to include a term paper, and two case studies.
The Security Plan will consist of all items required for the chose company to safeguard their information. At a minimum, answer the who, what, where, when and how of this plan. At least three valid references will be used, and a budget and schedule developed.
The Case Studies will consist of a summary and critique of a security article from a valid source e.g. a referred journal. At least one page of a summary and at least one page of a critique of the article (NOT the topic!) will be submitted with a cover page, and a bibliography page.
All papers will be 12 pt, double spaced, paginated and the cover sheet will include at least: Name of student, Course Name, Course Number, Assignment, and Due Date. Headers will be used to indicate the start of the Summary and the start of the Critique. Note of caution: Do not look for the briefest of articles. It will make your assignment more difficult, not easier.
You will be required to present a summary of your security plan in a professional manner. This means an 30 minute oral presentation accompanied by appropriate visual material. You will be presenting this to the CEO of your company in order to obtain funding.
Note: Late assignments will lose 10% of grade for that assignment.
|
|
Course Schedule:
This schedule presents 16 units or modules, with each unit corresponding to a half-day on weekends.
Initial meeting - Saturday morning, January 24th.
Introductions; Review of syllabus; Clarification of goals, objectives and requirements; Orientation to subject; Chapter 1.
Second meeting - Saturday afternoon - January 24th.
Chapter 2.
Third meeting - Sunday morning - January 25th.
Chapter 3.
Fourth meeting - Sunday afternoon - January 25th.
Chapter 4.
Fifth meeting - Saturday morning - February 7th.
Chapter 5.
Sixth meeting - Saturday afternoon - February 7th.
Chapter 6.
Seventh meeting - Sunday morning - February 8th.
Chapter 7. First Case Study paper due.
Eighth meeting - Sunday afternoon - February 8th.
Mid-Term.
Ninth meeting - Saturday morning - February 21st.
Chapter 8 and Appendix - Cryptography.
Tenth meeting - Saturday afternoon - February 21st.
Chapter 9.
Eleventh meeting - Sunday morning - February 22nd.
Chapter 10.
Twelfth meeting - Sunday afternoon - February 22nd.
Chapter 11. Second Case Study Paper due.
Thirteenth meeting - Saturday morning - March 6th.
Chapter 12.
Fourteenth meeting - Saturday afternoon - March 6th.
Presentations.
Fifteenth meeting - Sunday morning - March 7th.
Presentations.
Sixteenth meeting - Sunday afternoon - March 7th.
Final examination. Term papers due.
|
|
Academic Policies:
Please refer to the UMUC - Europe Graduate Catalog, available online at http://www.ed.umuc.edu/general_info/publications/catalogs/index.html or from your local Education Center, for information on the following:
Academic Integrity
Course Load
Exception to Policy
Grade Appeal Process
Make-up Examinations
Nondiscrimination
Students with Disabilities
|
|
Faculty Bio:
|
To be discussed in class.
|
|