AcademicsResearchPeopleNews & EventsAbout Howe

Management

Information Systems

Telecommunications Mngt

EMTM

MBA

Project Management

Pharmaceutical Mgnt

Prof. Communications

Certificates

Information Management

Business Process Management & Service Innovation

Engineering Management

Entrepreneurial IT

Global Innovation Management

Healthcare Leadership

Enterprise Systems

IT for Financial Services Industry

IT Outsourcing

Management of Wireless Networks

Project Management

Pharmaceutical Management

Security Management and Forensics

Technology Management

Telecommunications Management

IT in Pharma/Biotech

General Management

Professional Communications


Graduate Course Catalog

Graduation Preparation
Stevens Institute of Technology

Advanced Certificate in Security Management and Forensics

Description

The objective of this interdisciplinary graduate certificate program is to provide training in security risk management and security forensics, as well as a formal means for recognition of skills in these areas. The program would particularly benefit graduate students in EE, CS, TM, and Management, as well as professionals in the financial industry, the insurance industry, and law enforcement organizations.

The program includes lectures, projects, and related labs, and is taught by dedicated world-class experts with many years of teaching, research, and real-world experience. An Advanced Certificate in Security Management and Forensics recognizes successful completion of the program. Such recognition is all the more valuable as Stevens has been designated by the National Security Agency as one of the Centers of Academic Excellence (CAE) in Information Assurance. This is an honor of great value in the security profession; government and industry favor graduates of CAEs.

The program includes the following four courses, which are offered, in addition to on-campus, online and in off-campus corporate locations with a sufficient number of students.

Courses

For more detail, please visit http://www.cs.stevens.edu/cybersecurity/

Catalog descriptions of the courses

CS 573: Fundamentals of CyberSecurity

This course studies the mathematical models for computer security (Bell-LaPadula, Clark-Wilson, Biba and Gligor models). It analyzes and compares, with respect to formal and pragmatic criteria, the properties of various models for hardware, software and database security. Topics also include: formal specification and verification of security properties, operating system security, trust management, multi-level security, security labeling, security auditing and intrusion detection, security policy, safeguards and countermeasures, risk mitigation, covert channels, identification and authentication, password schemes, access control lists and data fusion techniques. The course includes a project.

*Prerequisite: CS 520 (Introduction to Operating Systems) or equivalent

CS/TM 694: E-business Security and Information Assurance

This course addresses the security of e-business and cyber environments from an end-to-end perspective, including data center security and access security. The information security phases of inspection, protection, detection, reaction and reflection are emphasized. Topics also include: server and application security, virtual local area networks (VLANs), secure access and financial transaction techniques, backup and disaster recovery techniques. The course also reviews financial Electronic Data Interchange (EDI) and smart card security in banking applications, and describes how the business and financial risks associated with security are estimated and managed. The course includes a project and related lab experiments.

*Prerequisite: CS 666 (Information Networks I) or TM 610 (Business Information Networks) or equivalent

CS/MIS 665: Cybersecurity Forensics

Security forensics involves the identification, preservation and analysis of evidence of security attacks to identify the attackers and document their activity with sufficient reliability to justify appropriate technological, business, and legal responses. This topic has technological and legal components, both of which are covered in this course.
The technical aspect addresses analysis of intruder types and the intrusion process, review of logs and profiles and their types, identifying attack signatures and fingerprints, exploring the applications of data mining techniques, study of various traceback methods, and the preservation of the information and evidence acquired through the use of forensic tools and techniques. The legal aspect addresses the impacts of forensics on the legislative, judicial, and regulatory proceedings that collectively articulate and promote public policy goals, determine civil and criminal liability, and define and assess regulatory compliance. The course draws on pertinent concepts of law and legal procedure, at a level accessible by non-lawyers, to explore the broader significance of forensics in the private and public sectors.

*Prerequsite: CS 573 (Fundamentals of CyberSecurity)

TM675/MIS648: Risk Analysis and Economics of Security

This course provides a working knowledge of risk analysis and management for enterprise security. The emphasis is on modeling, analysis and economic evaluation of technology risks. The student learn about business continuity and disaster recovery planning, security risks, tangible and intangible consequences of security failure, risk mitigation options and economic trade offs. The first part of the course covers the basics of risk identification, assessment, control and mitigation using a system framework. The second part covers application of decision theory and engineering economies to security options based on models that consider risk profile and uncertainty in enterprise security problems. The learning is reinforced through case reviews and team projects.

*Prerequisite: TM 605 or CS 505, MA 500 or TM 500 or equivalent

--------------------------------------------------------------------------------

For Further Information: http://www.cs.stevens.edu/cybersecurity/

For details, please contact:
Dr. Manu Malek
Industry Professor Computer Science and Telecom Management Director, Graduate Certificate in CyberSecurity Program
Stevens Institute of Technology
Hoboken, NJ 07030
Tel. +1 201 216 5611
Email: mmalek@stevens.edu