Curriculum Description & Courses: Certificates and 2-Year Programs

2-Year Program Description & Goals:

The goal of Information Technology (IT) Security A.S. Program is to provide successful students with the knowledge and skills necessary to design, implement, and maintain secure modern information infrastructures and systems.  The need for well-educated security professionals has never been greater.  As private industry and governments rely more on the Internet and computer networks, skilled security specialists are in demand to protect critical information from threats such as hacker attacks, internal threats, malware, industrial espionage, cyber-terrorists, and natural disasters.

The program coverage includes operating system security, network and web security, ethical hacking, database security, cryptography, intrusion detection (recovery and response), disaster recovery, and cyber-law.

Our program provides a “hands-on” approach to technical education that is designed to instruct the next generation of security professionals so that they will have the necessary skills in order to fill this vital need.   All of the courses in the A.S. program are fully transferable to SPC’s College of Technology Management Bachelor of Applied Science degree.

2-Year Program Requirements:

To be admitted to St. Petersburg College's 2-year Associate in Science Degree a degree seeking student must have the following items in the Admissions/Registration Office on the home campus or center:

A. An application and a nonrefundable application fee.
B. Completed high school transcript stating that the student
received a standard high school diploma, college
ready diploma or GED transcript with date of graduation.
C. Transcripts from all previously attended postsecondary
institutions(s) that are fully accredited by a regional or
national accrediting agency recognized by the United
States Department of Education.

2-Year Transferability:

All ITSEC A.S. 2 year degree credits are fully transferable to the Technology Management 4 year Bachelors Degree (BAS) for institutions following the ITSCEE program.

Linkage of Certificate qualifications and articulation are provided below.

Security Certificate & ISA Programs.

CET 2691 LAWS AND LEGAL ASPECTS OF INFORMATION TECHNOLOGY SECURITY 3 credits

This course provides students with an overview of legal issues common to computer security, and interweaves business paradigms into the reading to offer a macro-context against which to view such issues. These issues topically fall within the parameters of privacy, intellectual property, computer crime investigation for network breaches, civil liability, and ethics of the Information Technology (IT) professional focused on network security. The course will seek to expand on all matters of law that may be included on any network security certification exam, but also covers broadly the economic impact that security breaches have on industry sectors and the business response required. Coursework will include reviewing fact patterns applied to legal and ethical authorities. 47 contact hours.

CIS 1350 NETWORK DEFENSE AND COUNTERMEASURES 3 credits

Prerequisite: CIS 1353. This course will explore concepts of network defense and countermeasures as well as hardware and software required to design, configure and implement secure networks. Security topics covered in this course include firewalls, Intrusion Detection Systems (IDS), Virtual Private Networks (VPN) and policy creation using the Windows 2000 Operating System (OS), TCP/IP packet and signature analysis. The student will get hands-on instruction installing the network defense mechanisms and countermeasure applications. Software will be used for collecting, monitoring and auditing various activities; students will analyze threats and intrusions. Multiple business scenarios will be reviewed to determine which security policy provides the most protection at an acceptable level of risk in order to conduct business. The student will be able to determine differences between network based and host based IDSs as well as the various types of firewalls such as Bastion Host and Proxy Servers. VPN solutions will be developed on the Windows 2000 Operating System. Win 2K, Linux and Unix will be examined and compared to understand the differences in protection capabilities. 47 contact hours

CIS 1354 INTRODUCTION TO NETWORK SECURITY FOUNDATIONS 3 credits

It is recommended that students have prior computer network training or experience. This course provides the student with an overview of Information Technology (IT) Security and introduces the components necessary to secure network information systems. Topics include security policies, intrusion detection systems (IDS), firewalls, operating system security and network security basics. Students will also be introduced to current hacker techniques and log auditing processes. Current computer security issues will also be explored as class projects. 47 contact hours.

CIS 1358 OPERATING SYSTEM SECURITY 3 credits

Prerequisite: CIS 1354. This course introduces the student to securing Windows 2000 and Linux operating systems. In this course the student will acquire knowledge and skills to perform audit assessments and implement enterprise-wide operating systems security. The objective of the course is to provide hands-on instruction, from the desktops, servers and the network infrastructure and understand how to control the privacy, integrity and authenticity of data. 47 contact hours.

CIS 2352 ETHICAL HACKING 3 credits

Prerequisite: CIS 1354. This course is designed to provide the student with an understanding of the techniques and methodologies of security penetration testing.  This course provides hands-on instruction using the various tools and methods that security professionals use to analyze an information system in order to discover vulnerabilities and protect against information loss, cyber terrorism, and corporate espionage. The student will be introduced to fundamental security testing concepts, gain practical knowledge of computer programming, and learn how to properly document a security test.  In addition to exploring the legal and ethical ramifications of penetration testing, students will also learn how to apply the appropriate countermeasures in order to reduce the risk that an organization faces. 47 contact hours.

CAP 2134 DATABASE SECURITY 3 credits

Prerequisite: CIS 1354. This course is designed to provide the student with an understanding of database security concepts and practices. The objective of the course is to provide hands-on instruction in various database tasks that relate to securing the confidentiality, integrity and availability of information that is stored in a database. The student will be able to perform administrative tasks in different database management systems, as well as manage database user profiles, privileges, and roles. Different database application security models will be explored, as will the security advantages of utilizing virtual private databases. Finally, the process of database auditing will be explored, including auditing methods using various database management systems. 47 contact hours.

CGS 2811 INCIDENT RESPONSE AND DISASTER RECOVERY 3 credits

Prerequisite: CIS 1354. This course is designed to provide the student with an understanding of the concepts and practices of contingency operations, including the administration of the planning process for incident response, disaster recovery, and business continuity planning. Topics include organizational readiness planning, the phases of incident response, different contingency strategies, tasks related to the preparation, implementation, operations, and maintenance of disaster recovery, and business continuity. 47 contact hours.