Master of Science in Cyber Operations and Resilience Degree Plan

An introduction to systems thinking, lateral thinking, and resilience thinking as they relate to cybersecurity. Topics include understanding the complexity/interconnectedness of cybersecurity, applying lateral thinking in solving cyber problems, interacting among people, processes, and technologies, and managing disturbances/surprises/uncertainty to be more resilient.

A study of risk assessment and management techniques, methods, and models used in industry to minimize, control and communicate risks, including NIST and OWASP.

A study of the practice of identifying and prioritizing potential threats and security mitigations to protect something of value.

An introduction to the practice of using people, process, technology, and metrics to assure security of information and risk management.

An introduction to Python and Powershell, and how these can be used to simplify cyber related tasks.

An overview of how machine learning and artificial intelligence can be applied to cybersecurity.

An introduction to deep learning algorithms and how to design deep learning for cyber security.

An introduction to embedded systems, basic concepts of IoT, and making smart things. This covers IoT architecture including sensor, hardware, firmware, internet connection, and data mining.

An overview of how to embed cyber security in systems design.

An overview of centralized security functions where people, processes, and technology are employed to continuously monitor and improve an organization’s security posture while preventing, detecting, analyzing, and responding to cybersecurity incidents.

An introduction to existing regulations that companies and organizations must follow to safeguard information and systems.

A study of how to think like a blue team and how to think like a red team.

A study of practical cybersecurity architecture and zero trust architecture. Topics include, creating a security architecture, what is and what is not zero trust architecture, building relevant views to a zero trust architecture (including network, user, data and attacker views), when and where zero trust architecture can be broken, and what zero trust can strengthen. This course takes a practical view of security architecture and zero architecture issues that can be applied in any environment.

One semester/one course of teaching in the area of cyber and physical resilience teaching at regional community college or university.

Obtain one industry certification. May be repeated once for credit.

Execution of a substantial exercise that demonstrates the ability to successfully and independently carry out a professional activity similar to what is encountered in the professional workplace; archival of the results of the project is required according to standards approved by the Graduate College. May be repeated for credit. Pass/fail only.

A study and experimentation of platforms, open source tools, and techniques for cyber threat intelligence. The connection between cyber threat intelligence and risk assessment. Advanced practicum in artificial intelligence applications in cyber threat intelligence.

An examination of cyber warfare and conflicts. An international issue that spans across nation-state borders and how it impacts cyber and physical infrastructure interdependencies.

A study of cryptographic mechanisms and cryptographic threat assessments to critical information infrastructures. Topics include the advances in electronics hardware, software, network, and quantum computing. Side channel attacks and signal intelligence/collection.

A study of resilient systems, networks and infrastructure design on the ability to anticipate, withstand, recover from, and adapt to adverse conditions, stresses, attacks, or compromises.

A study of information technology and industrial networking exploitation. An examination of advances in network attacks and exploitation techniques. Analyze the layers of design to increase infrastructure interconnection network resiliency.

A study and application of how low-level hardware and software can be exploited and defended. The architecture of devices and systems for resiliency. The use of secure coding and defense against counterfeiting devices.

An overview of cyber security risk management frameworks and practices. Students will model cybersecurity risks and apply both qualitative and quantitative risk assessment methods.

An examination of laws, regulations, ethics, policy, and executive orders for data protection and privacy. Topics include national security issues, ethics, data protection, digital forensics, physical evidence, incident response, and event administration and management.

A study and application of organization cyber governance, risk, and compliance management in cyberspace. Learners will look into the business context of key stakeholders, corporate culture, and organization risks. Industry standards and frameworks will be used.