ISEC475 - Security Engineering & Assessment

Description:
Ensuring the confidentiality, integrity, and availability of large and complex systems is notoriously difficult in the face of capable and determined opponents. This course discusses security engineering as the practical application of requirements analysis, modeling, architecture, processes, and measurement toward improving the dependability of complex information systems throughout their lifecycle.

Outcomes:

• Use criteria in selecting a security process
• Trace business requirements through to security solutions
• Evaluate risk assessment methods
• Perform attack surface analysis and model threats
• Evaluate security architectures based on key performance criteria
• Discuss system lifecycles with respect to security requirements

Required Text(s):

Mead, N. R., & Woody, C. C. (2017). Cyber security engineering: A practical approach for systemsand software assurance. Boston, MA: Addison-Wesley. ISBN: 9780134189802.