SIE573

041392

The purpose of this course is to explore widely accepted security frameworks, industry standards, and techniques employed in engineering trustworthy secure and resilient systems. We will study and explore several National Institute of Standard and Technology (NIST) frameworks such as the Cyber Security Framework (CSF), the Risk Management Framework (RMF), and other standards. These widely adopted standards have been have been developed to ensure that the appropriate security principles, concepts, methods, and practices are applied during the system development life cycle (SDLC) to achieve stakeholder objectives for the protection of assets across all forms of adversity characterized as disruptions, hazards, and threats. We will also explore case studies within the Department of Homeland Security's (DHS) 16 Critical Infrastructure elements, to understand how government and private sector participants within the critical infrastructure community work together to manage risks and achieve security and resilient outcomes. Cyber resiliency is the ability to anticipate, withstand, recover from, and adapt to adverse conditions, stresses, attacks, or compromises on systems that use or are enabled by cyber resources regardless of the source.

Upon completion of the course, students will gain experience in understanding, assessing and complying with the various NIST and DHS frameworks and standards in order to proactively design security features into systems/products to prevent or minimize asset loss or compromise, and reduce system defects that can lead to security vulnerabilities that could render a system susceptible to exploitation. They will also learn how to develop systems that are more cyber resilient.

GRD - Regular Grades A, B, C, D, E

Graduate