BCC - Spring 2012 Syllabus
Course Name : CIT-102
Course Description : Security Awareness
Instructor : Igor Kholodov Igor.Kholodov@bristolcc.edu
Office : K211
Telephone: 508-678-2811 ext. 3328
URL of this file: http://www.c-jump.com/bcc/t102t/cit102syllabus.htm

CIT-102 Security Awareness

• Welcome!
• ________________________________________________________
• Posted  Feb 18 :
  
  
  • quiz@home
    • Quiz 2 - Desktop Security is now available. Be sure to practice before taking the test.
      
      The quiz is due Monday, Feb 27.
      
      
  • Reading:
    • Textbook reading this week:
      Chapter 3, "Internet Security"
      
      
• ________________________________________________________
• Posted  Feb 10 :
  
  
  • quiz@home
    • Quiz 1 - Introduction to Security is now available! Be sure to practice before taking the test. You can practice as many times as you'd like. When ready, click the "Go" button to take the test. You will see your grade when the test finishes.
      
      The quiz is due Monday, Feb 20.
      
      To get your Login and Password for the site, send me email and I will reply with your credentials. Quiz password is NOT the same as BCC eLearning. However, once you log in, you can change the password to something that is easy for you to remember.
      
      
  • Midterm Paper Assignment due Monday, Mar 5:
    • Your assignment is Case Project 1-5 (textbook page 37)
      • Case Project 1-5: Attack Experiences
        Based on your own personal experiences or those of someone you know (you may have to interview other students or a friend), write a one-page report regarding a computer attack that has occurred. When did it happen? What was the attack? What type of damage did it inflict? How was the computer "fixed" after the attack? What could have prevented it?
        
        
      In your report, also include the facts and things you learned while working on this project. Make sure to include the links to any material referenced online. Submit by email to your instructor:
      Igor Kholodov Igor.Kholodov@bristolcc.edu
      
      
  • Reading:
    • Textbook reading this week:
      Chapter 2, "Desktop Security"
      
      
• ________________________________________________________
• Posted  Jan 28 :
  
  
  • Reading:
    • Textbook reading this week:
      Chapter 1, "Introduction to Security"
      
      
  • Homework due Feb 13:
    • On the web, find a video about computer security, and write two paragraphs: (a) what you already knew and (b) what you did not know about the subject. Submit those two paragraphs with the link to the video online by sending email to your instructor:
      Igor Kholodov Igor.Kholodov@bristolcc.edu
      
      
    • There is a video collection in Films on Demand section of BCC Library Learning Resources Center:
      http://www.bristolcc.edu/Academics/library/index.cfm
      ("FILMS ON DEMAND" button is on the bottom of the screen.)
      
      
• ________________________________________________________
• Posted  Jan 22 :
  
  
  • Reading:
    • Please be sure to read carefully CIT-102 course Syllabus and understand its policies and formats.
      
      
    • Textbook reading this week:
      Chapter 1, "Introduction to Security"
      
      
  • I hope everybody has a great Spring 2012 semester!
    
    

Catalog Description

This course introduces students to security and data confidentiality. The course presents a broad overview to help the student become more aware of computer security. Topics include securing data, confidentiality, integrity of data, password policies, and issues related to liability. One hour of lecture per week.

Course Objectives

At the end of this course, students will be able to:

• Identify and classify security threats and vulnerabilities facing an organization

• Understand basic security concepts

• Evaluate the potential of security products to meet identified threats

• Secure Windows-based software and hardware platforms

• Identify attacks against networks

• Understand cryptography techniques to secure information

• Understand PKI (public key infrastructure) standards

• Secure Windows desktop PC and user accounts

• Work on practical assignments to defend PC against hacking attacks

• Understand enterprise policy creation

• Identify organizational and management roles relating to security infrastructure.

• Prepare security policies and procedures

• Identify the elements needed to create a disaster recovery plan

• Provide input into security decisions facing an organization

• Recommend changes to an organization to increase security awareness and effectiveness

Required Text

Security Awareness, 3rd edition by Mark Ciampa, Course Technology ISBN-10: 1435454146 ISBN: 978-1435454149 Published June 2009

Course Format

This is a lecture course in which topics are presented by the instructor and are designed to promote classroom discussions.

Whenever possible, students will be given active learning exercises for both in and out of class.

Each student will also be asked to prepare a midterm paper on a security-related concept. (The topic must be pre-approved by the instructor.)

The class syllabus, assigned readings, and the class exercises and project details will all be available from the class Web page.

Late assignments will have five points deducted from its grade for each day late. Projects more than 1 week late will NOT be accepted.

Class Participation

Be sure to do the required reading and assignments before attending class. You cannot successfully enter into discussion without some understanding of the material.

Attendance and lateness: After two absences, a student may be withdrawn from the course. After one warning about lateness and/or absences, your final grade will be lowered ten points for each day the student is late or absent from that point. In Case You Are Late or Absent, it is your responsibility to get the course notes.

Evaluation and Grading

There will be a one-hour final exam at the end of the course. To receive a passing grade, you must:

• Attend required class hours.

• Prepare and submit a 2- to 3- page midterm paper on a security-related concept.

• Complete the final project.

• Participate actively in the class.

Course Outline

Introduction to Security

• Information Security Terminology and definitions Challenges of Securing Information
• Security Attacks
• Who the Attackers Are
• Defenses
• Presentation: Introduction to Security (handout.)
• Quiz
• ch01.ppt

Desktop Security

• Attacks on Desktop Computers
• Desktop Defenses
• Recovering from an Attack
• Presentation: Desktop Security (handout.)
• Quiz
• ch02.ppt

Internet Security

• Internet and World Wide Web
• E-Mail
• Internet Attacks
• Internet Defenses
• Quiz
• ch03.ppt

Personal Security

• Spyware
• User Passwords
• Phishing
• Social Network Attacks
• Identity Theft
• Antispyware
• Cryptography
• Presentation: Digital IDs and Encryption Mechanisms (handout.)
• Quiz
• ch04.ppt

Wireless Network Security

• Overview of Computer Network
• Network Devices
• Attacks on Wireless Networks
• Securing a Home Wireless Network
• Public Wireless Networks
• Presentation: Wireless Access Point Configuration (handout)
• Presentation: Wi-Fi Security (handout)
• Quiz
• ch05.ppt

Enterprise Security

• Business Continuity
• Redundancy Planning
• Disaster Recovery Procedures
• Security Policy
• ch06.ppt

Final Project

Note: This is a suggested course outline and will be generally followed, subject to change according to the instructor's discretion and needs. Academic flexibility is important.