Master of Science in Cyber Operations and Resilience Degree Plan

An introduction to systems thinking, lateral thinking and resilience thinking as they relate to cybersecurity. Topics include understanding the complexity/interconnectedness of cybersecurity, applying lateral thinking in solving cyber problems, interacting among people, processes and technologies, and managing disturbances/surprises/uncertainty to be more resilient.

A study of risk assessment and management techniques, methods and models used in industry to minimize, control and communicate risks, including NIST and OWASP.

An introduction to the practice of using people, process, technology and metrics to assure security of information and risk management.

An introduction to the use of probabilistic methods for quantifying cyber risk. Includes Bayesian and Monte Carlo methods, an introduction to the risk analysis process and hands-on work with mathematical models and vulnerability analysis.

An introduction to Python and Powershell and how these can be used to simplify cyber related tasks.

An overview of how machine learning and artificial intelligence can be applied to cybersecurity.

An introduction to deep learning algorithms and how to design deep learning for cyber security.

An introduction to embedded systems, basic concepts of IoT and making smart things. This covers IoT architecture including sensor, hardware, firmware, internet connection and data mining.

An overview of how to embed cyber security in systems design.

An overview of centralized security functions where people, processes and technology are employed to continuously monitor and improve an organization’s security posture while preventing, detecting, analyzing and responding to cybersecurity incidents.

An introduction to existing regulations that companies and organizations must follow to safeguard information and systems.

A study of how to think like a blue team and how to think like a red team.

A study of practical cybersecurity architecture and zero trust architecture. Topics include, creating a security architecture, what is and what is not zero trust architecture, building relevant views to a zero trust architecture (including network, user, data and attacker views), when and where zero trust architecture can be broken, and what zero trust can strengthen. This course takes a practical view of security architecture and zero architecture issues that can be applied in any environment.

A study and experimentation of platforms, open source tools and techniques for cyber threat intelligence. The connection between cyber threat intelligence and risk assessment. Advanced practicum in artificial intelligence applications in cyber threat intelligence.

An examination of cyber warfare and conflicts. An international issue that spans across nation-state borders and how it impacts cyber and physical infrastructure interdependencies.

A study of cryptographic mechanisms and cryptographic threat assessments to critical information infrastructures. Topics include the advances in electronics hardware, software, network and quantum computing. Side channel attacks and signal intelligence/collection.

Preservation and collection of digital evidence using key principles and methodologies. Develops the understanding of eDiscovery principles, laws and best practices.

A study of resilient systems, networks and infrastructure design on the ability to anticipate, withstand, recover from and adapt to adverse conditions, stresses, attacks or compromises.

A study of information technology and industrial networking exploitation. An examination of advances in network attacks and exploitation techniques. Analyze the layers of design to increase infrastructure interconnection network resiliency.

A study and application of how low-level hardware and software can be exploited and defended. The architecture of devices and systems for resiliency. The use of secure coding and defense against counterfeiting devices.

Provides a practical, hands-on approach to mastering IT and cybersecurity problem-solving, complemented by active participation in cybersecurity competitions for practical application and skill development.

An overview of cyber security risk management frameworks and practices. Students will model cybersecurity risks and apply both qualitative and quantitative risk assessment methods.

An examination of laws, regulations, ethics, policy and executive orders for data protection and privacy. Topics include national security issues, ethics, data protection, digital forensics, physical evidence, incident response and event administration and management.

A study and application of organization cyber governance, risk and compliance management in cyberspace. Learners will look into the business context of key stakeholders, corporate culture and organization risks. Industry standards and frameworks will be used.

Gain the expertise required to create and refine effective security policies for organizations of all sizes. Explore the dynamic landscape of cybersecurity and learn how to craft policies that adapt to evolving threats and compliance requirements, ensuring robust protection for digital assets.

Execution of a substantial exercise that demonstrates the ability to successfully and independently carry out a professional activity similar to what is encountered in the professional workplace; archival of the results of the research is required according to standards approved by the Graduate College.

One semester/one course of teaching in the area of cyber and physical resilience teaching at regional community college or university.

Obtain one industry certification. May be repeated once for credit.