- Degrees & Programs
- Student Success
- Student Activities
- Career Services
Course Code: ISSC364 Course ID: 4401 Credit Hours: 3 Level: Undergraduate
This course examines a broad range of network security issues. It explores how access controls protect resources against unauthorized viewing, tampering, or destruction and serves as a primary means of ensuring privacy, confidentiality, and prevention of unauthorized access and disclosure. It focuses on access control, such as components, processes, controls, and authentication, as well as security breaches, organizational behavior and social engineering, physical security, remote access control, public key infrastructure and encryption, cryptography, testing, and information assurance. Requires CITRIX CLIENT SOFTWARE INSTALLATION FOR ONLINE VIRTUAL LABS accessibility.
|Registration Dates||Course Dates||Session||Weeks|
|04/27/20 - 10/02/20||10/05/20 - 11/29/20||Fall 2020 Session B||8 Week session|
|06/29/20 - 12/04/20||12/07/20 - 01/31/21||Fall 2020 Session D||8 Week session|
|08/31/20 - 01/29/21||02/01/21 - 03/28/21||Winter 2021 Session I||8 Week session|
The successful student will fulfill the following learning objectives:
CO-1: Explain how to access risk and its impact on access control:
CO-2: Describe Access Control Policies, Standards, Procedures, and Guidelines
CO-3: Define Unauthorized Access and Security Breeches
CO-4: Discuss Human Nature, Organizational Behavior and Social Engineering
CO-5: Describe Access Control for Information Systems
CO-6: Identify Planning Considerations for Physical Security and Access Control
CO-7: Implement Access Control Systems
CO-8: Identify Access Control Solutions for Remote Worker
CO-9: Discuss Public key infrastructure, Encryption and Cryptography
CO-10: Describe the Elements of Information Assurance
The grading will be based on 6 graded assignments, 4 Peer Discussion Forum postings, an individual project proposal paper with acknowledgement, outline, presentation and final project proposal, as well as one open book quiz.
All assignments, Forum question responses, and the quiz are due by 12:00 midnight Eastern Time Sunday of the week assigned.
Project Paper (Proposal Acknowledgement, Outline, PowerPoint Presentation, and Paper) Topics:
Week 2: Project Proposal Acknowledgement due
4: Project Proposal Outline due
Week 7: PowerPoint Presentation due
Week 8: Project Proposal Final report and Revised Presentation (if revision required)
Course Project (15%)
This course project is intended to assess your ability to comprehend and apply the basic concepts related to information security management, such as the following:
Your ability to execute the tasks within these information security domains and others will be evaluated against the learning objectives as identified and described in previous lessons of instruction for this course.
Required Source Information and Tools
You will require the following resources to complete this project:
User identification, authentication, and authorization are essential in developing, implementing, and maintaining a framework for information system security. The basic function of an information system security framework is to ensure the confidentiality and the integrity, as well as the availability of systems, applications, and data. Certain information security implementation and management knowledge is required of network administrators, IT service personnel, management, and IT security practitioners, such as information security officers, security analysts, and domain administrators.
You are provided with the text sheet named “Integrated Distributors Incorporated” (Project.TS1.doc) to complete this project. You play the dual role of an IT architect and IT security specialist working for Integrated Distributors Incorporated (IDI), a multi-national organization with offices in several countries. Your instructor for this course plays the role of the chief information officer (CIO). Your peers play the role of selected technology staff. Each of the organization’s locations is operating with different information technologies and infrastructure—IT systems, applications, and databases. Various levels of IT security and access management have been implemented and embedded within their respective locations.
Your goals as the IT architect and IT security specialist are to:
Brocade; Survey Results Demonstrate Need for Integrated Approach to Network Security; Point Products Fall Short”, Network Business Weekly, Apr 5, 2010.
Bruce J.Fried, et al, Human Resources in Healthcare: Managing for Success,2nd ed. (Chapter 4)
Certified Ethical Hacker is Big News for Local Small Business: The Academy of Computer Education”, Business Wire, Dec 22, 2008.
Craig S.Wright The IT Regulatory and Standards Compliance Handbook: How to Survive Information Systems Audit and Assessments (Chapter 3)
Dobromir Todorov Mechanics of User Identification and Authentication: Fundamentals of Identity Management (Chapter 1, 2 and 3)
e-DMZ Security Selected as 2010 SC Magazine Best Regulatory Compliance Solution”, Business Wire, Mar 8, 2010.
Eric Cole, et al Network Security Bible (Chapter 5)
Harold F.Tipton, et al Information Security Management Handbook, 6th ed. (Chapters 19, 30, 87 and 106)
Harold F.Tipton, et al Official (ISC)2 Guide to the CISSP CBK(Domains 1 and 2)
Jay Kelley,et al Network Access Control for Dummies (Chapter 15)
Jeremy Moskowitz Group Policy: Management, Troubleshooting, and Security: For Windows Vista, Windows 2003, Windows XP, and Windows 2000(Chapter 1)
John R.Vacca Public Key Infrastructure: Building Trusted Applications and Web Services (Chapter 1)
Joseph Steinberg, et al SSL VPN: Understanding, Evaluating, and Planning Secure, Web-Based Remote Access
M.E. Kabay “Extensive Catalog Provides Security Controls for Contemporary Security Requirements”, Network World (Online), Nov 2, 2009.
Michael Coles, et al Expert SQL Server 2008 Encryption (Chapter 1)
Neil Wyler, ed. Juniper Networks Secure Access SSL VPN Configuration Guide (Chapter 9)
NetworkedPlanet: 50 Percent of Employees Admit to Losing Documents on the Company Network”, M2 Presswire, Apr 12, 2010.
Peter Stephenson “Applying Evolved Policy”, SC Magazine, Oct 2009, Vol. 20 Issue 10, (Page 39)
Poonam Khanna “Two-Factor Authentication is Key to Sound ID Management: Schmidt”, Computing Canada, Jun 17, 2005, Vol. 31 Issue 9, (Page 10)
Robert E.Larson, et al CCSP: Cisco Certified Security Professional Certification All-in-One Exam Guide(Chapter 4)
Secure Computing Shares Research Innovations and Best Practices In Email, Web and Domain Authentication; Technologists Discuss Reputation Systems and Authentication Protocols at 2007 Authentication Summit”, PR Newswire, Apr 17, 2007.
Seymour Bosworth, et al Computer Security Handbook, 5th ed. (Chapters 23, 67 and 69)
Steve Manzuik, et al Network Security Assessment: From Vulnerability to Patch (Chapter 2)
Yan Zhang, et al Handbook of Research on Wireless Security (Chapter XLIV)
|Book Title:||Access Control, Authentication, and Public Key Infrastructure, 2nd ed - e-book available in the APUS Online Library|
|Publication Info:||Jones & Bartlett Lib|
|Author:||Chapple, Ballad, Banks|
|Book Title:||Requires CITRIX CLIENT SOFTWARE INSTALLATION FOR ONLINE VIRTUAL LABS accessibility - instructions provided inside the classroom.|
|Author:||No Author Specified|
|Book Title:||ISSC364 virtual lab manual provided inside the classroom|
|Publication Info:||CLASS-Jones & Bartlett|
|Electronic Unit Cost:||$55.00|
Not current for future courses.