University of Fairfax

Academic Programs

Faculty

INFOSEC Projects

Virtual Library

Schedule

Course Descriptions

More information

Apply Now About Us Academics Your Career Path Community Contact Us Certification Training Center

Course Descriptions

CORE COURSES

Information Security Degrees

IA7020 Information Security Systems and Organizational Behavior and Awareness
In this course, students utilize a subset of five of the ten domains of the (ISC)2 Common Body of Knowledge (CBK) in information security as a framework to critically analyze security awareness issues and to evaluate best practices in implementing security systems within the enterprise. (3 credits)

IA7030 Legal and Ethical Practices in Information Security

In this course, students utilize a subset of five of the ten domains of the (ISC)2 Common Body of Knowledge (CBK) in information security as a framework to critically analyze ethical decision-making and to evaluate the best practices employed in security operations planning and management. (3 credits)

IA7040 Information Security and Organizational Change

In this course, students analyze the principles of change management as they apply to the requirements and regulations of information security. Students evaluate the factors which affect corporate decision-making when implementing security programs and the ability of the manager to translate corporate needs into information security projects. (3 credits)

IA8010 Business and Security Risk Analysis

This course provides students with an overview of risk management principles. Methods to identify, quantify, and qualify internal and external risks to the organization are examined. Students apply these principles and methods to the current business and risk environment. (3 credits)

IA9200 Strategic Analysis in Information Security

In this integrative course, students assess the information security risk associated with an identified management problem. Students then develop a risk mitigation strategy which integrates principles and techniques of risk analysis, project planning, and change management. This project serves as the Qualifying Exam for doctoral students. (3 credits)

PM8100 Information Security Project Management

In this course, students utilize PMI’s Project Management Body of Knowledge (PMBOK) as a framework to apply project management concepts in the information security arena. Each student develops a project plan for a security assessment which incorporates the technical and behavioral characteristics of high performance teams. (3 credits)

RM6000 Effective Writing in Information Security Analysis

In this course, students utilize secondary research to analyze a current best practice or process in one of the ten domains of Information Security. Students write and present a position paper providing a rationale for research to evaluate the effectiveness of that practice or process. (3 credits)

RM8250 Web-Based Research Methods in Information Security

In this course, students acquire information retrieval skills and research competencies to identify and evaluate industry-relevant sources of information for the purposes of analysis and research in information security. Students compare and contrast the utility of publicly-available and subscription-based information sources for the purposes of meeting academic and professional requirements. (3 credits)

Enterprise Management Degrees

EM6000 Effective Writing

In this course, students utilize secondary research to analyze a current best practice or process in an enterprise. Students write and present a position paper providing a rationale for research to evaluate the effectiveness of that practice or process. (3 credits)

EM7020 Organizational Behavior and Awareness

In this course, students critically analyze organizational behavior and awareness issues and evaluate best practices in implementing programs within the enterprise. (3 credits)

EM7030 Legal and Ethical Practices

In this course, students critically analyze ethical decision-making and evaluate the best practices employed in operations planning and management. (3 credits)

EM7040 Organizational Change

In this course, students analyze the principles of change management as they apply to the requirements and regulations of an enterprise. Students evaluate the factors which affect corporate decision-making when implementing enterprise-wide programs and the ability of the manager to translate corporate needs into projects. (3 credits)

EM8010 Business Risk Analysis

This course provides students with an overview of risk management principles. Methods to identify, quantify, and qualify internal and external risks to the organization are examined. Students apply these principles and methods to the current business and risk environment. (3 credits)

EM8100 Project Managemen

In this course, students utilize PMI’s Project Management Body of Knowledge (PMBOK) as a framework to apply project management concepts in the enterprise. Each student develops a project plan for a program assessment which incorporates the technical and behavioral characteristics of high performance teams. (3 credits)

EM8250 Web-Based Research Methods

In this course, students acquire information retrieval skills and research competencies to identify and evaluate industry-relevant sources of information for the purposes of analysis and research in the enterprise. Students compare and contrast the utility of publicly-available and subscription-based information sources for the purposes of meeting academic and professional requirements. (3 credits)

EM9200 Strategic Analysis

In this integrative course, students assess the risk associated with an identified management problem. Students then develop a risk mitigation strategy which integrates principles and techniques of risk analysis, project planning, and change management. (3 credits)

SPECIALIZATION AND ELECTIVE COURSES

Specialization Courses

IA8020 Security Policies, Standards and Procedures

In this course, students examine the role of security policies, standards and procedures in addressing business and technical risks and develop a security governance report to evaluate compliance across the enterprise.
(3 credits)

IA8030 Design, Development and Evaluation of Security Controls

In this course, students transform high-level policies and procedures into quantifiable and measurable controls and mechanisms that enforce data and process integrity, availability and confidentiality. (3 credits)

IA8050 Security Risk and Vulnerability Assessment

This course provides students with an understanding of advanced techniques and tools for identifying and categorizing vulnerabilities that allow penetration of networked systems and environments. Students gain first-hand experience in the assessment of networked systems through extended virtual lab sessions.
(3 credits)

IA8060 Intrusion Detection, Attacks and Countermeasures

In this course, students examine common attack methods, technologies and countermeasures. Students also gain skills needed to recognize various stages and methods of attack on the enterprise.
(3 credits)

IA8070 Design and Development of Security Architectures

In this course, students evaluate the principles, attributes and processes used in designing and deploying a comprehensive and resilient layered security architecture that supports the business and technical objectives of the enterprise. (3 credits)

IA8080 Security Solution Implementation

In this course, students compare, contrast, and evaluate contemporary practices in the implementation of security solutions. (3 credits)

IA8110 Certification and Accreditation

In this course, students analyze an enterprise-wide view of information systems and the establishment of appropriate, cost-effective information protection programs. Within this context, students examine a set of standard policies, procedures, activities, and a management structure to certify and accredit information systems for the protection of the data as well as the systems.
(3 credits)

IA8120 Information Assurance Policy Planning and Analysis

In this course, students develop information assurance policies and deployment plans as part of the comprehensive strategic plan and operational objectives of the enterprise.
(3 credits)

IA8190 Forensic Evaluation and Incident Response Management

In this course, students explore the essentials of electronic discovery and analyze issues related to cyber evidence. Using this evidence, students identify and analyze the nature of security incidents, the source of potential threats and the methods used in incident management and mitigation. Students also analyze the technical and business issues which affect the actions of the enterprise in responding to a security incident.
(3 credits)

Elective Courses

IA8140 Business Continuity Planning and Recovery

In this course, students explore tools and strategies for Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP) activities. Topics include business impact assessment methods, recovery strategy approaches and solutions, and continuity planning.
(3 credits)

IA8150 Advanced Topics in Risk and Vulnerability Assessment

In this course, students examine leading tools, technologies and methodologies used in identifying, prioritizing and mitigating information system threats and vulnerabilities; identify and evaluate security controls; and formulate risk mitigation strategies. (3 credits)

IA8160 Advanced Topics in Intrusion, Detection and Prevention Methods

In this course, students review case studies describing security incidents and compare, contrast and evaluate the tactical countermeasures taken. (3 credits)

IA8170 Advanced Topics in Security Architecture Design Methodologies

In this course, students evaluate the critical factors in selecting and implementing security solutions that support a “defense-in-depth” security architecture. (3 credits)

IA8180 Advanced Topics in Wireless Security

This course explores emerging topics such as risks and vulnerabilities, assessment methods and standards associated with wireless technologies. (3 credits)

IA8210 Risk Management and Compliance

In this course, students evaluate the procedures and results of risk analysis, as well as the compliance processes that address the regulatory requirements which drive the need for risk analysis within the enterprise. Security-related regulations such as SOX, GLBA, FISMA and HIPAA are examined. (3 credits)

RESEARCH COURSES

Comprehensive Exam Courses

IA8220 Security Program Strategies and Implementation (Level I)

In this course, students explore the components of a security program for an enterprise and develop a strategy for its implementation. Students must complete a written exam paper which demonstrates mastery of literature-based research skills and American Psychological Association, 6th edition (APA) format and citation requirements. (3 credits)

IA8230 Legal and Ethical Management Issues in Information Security (Level I)

In this course, students explore issues with respect to the legal and regulatory environment of security and the challenges faced in developing and managing policy related to enterprise security. Students must complete a written exam paper which demonstrates mastery of literature-based research skills and APA format and citation requirements. (3 credits)

IA8240 Strategic and Technological Trends in Information Security (Level I)

In this course, students assess and evaluate technical trends and emerging technologies in information assurance and examine their impact on the implementation of security programs. Students must complete a written exam paper which demonstrates mastery of literature-based research skills and APA format and citation requirements. (3 credits)

CEX9000 Comprehensive Exams Level II

In this course, doctoral students enrolled in the DSc program must complete two written research exam papers which demonstrate mastery of the selected CBK domains, literature-based research skills and APA format and citation requirements. (3 credits)

Research Methods Courses

RM9100 Qualitative and Quantitative Analysis

In this course, students compare, contrast, and evaluate qualitative and quantitative methods of data analysis for solving information assurance problems and conducting information security-related field research. (3 credits)

RM9300 Applying the Research Paradigm to Information Security

In this course, doctoral students utilize a published research study as a model to review and analyze the research paradigm and the components of empirical research. (3 credits)

Research Preparation Courses

RES9100 Feasible Problem-Driven Research in Information Security

In this course, students apply the concept of problem-driven research in order to identify feasible topic areas for their field research study. Students also identify a research site and utilize problems occurring there as a basis for selecting a researchable (feasible, non-trivial) research topic. Finally, they identify the dependent variable to be studied. (3 credits)
Prerequisite: RM9300

RES9110 Research Topic Rationale

In this course, students articulate the problem statement and conduct a preliminary research literature review in Information Security to develop the rationale for their research. In addition, students identify other relevant bodies of research to be examined. (3 credits)
Prerequisite: RES9100, Comprehensive Exams

RES9120 Review and Synthesis of Prior Research

In this course, students expand the literature review and synthesize relevant empirical research in order to provide justification for the proposed research. In so doing, students narrow the focus of the proposed topic, formulate the final research question, identify the opportunity to contribute to knowledge in the Information Security arena, and describe the theoretical foundation for their dissertation research. (3 credits)

RES9130 Research Design: Theory and Methodology

In this course, students define the theoretical framework and select a research design approach (exploratory or hypothesis-testing). In addition, they evaluate the feasibility of standard research design types within the context of the proposed research site and document resource requirements for the proposed project. (3 credits)

RES9140 Research Design: Data Collection Plan

In this course, students develop the data collection plan based upon the selected research approach and design type. This plan specifies the methods to be utilized for measuring the variables as well as the data collection procedures to be followed. (3 credits)

RES9150 Research Design: Data Analysis Plan

In this course, students develop the data analysis plan based upon the selected research approach and design type. This plan specifies the data analysis methods and procedures to be utilized in the research. (3 credits)

RES9160 Research Design Specification

In this course, students finalize the operational requirements of the proposed research study by producing the Research Design Specification (RDS). (3 credits)

DISSERTATION DEVELOPMENT COURSES

DST9200 Data Collection and Analysis

In this course, doctoral candidates implement the approved research design by collecting and analyzing data. (2-6 credits)
Prerequisite: RES9160

DST9205 Continuing Dissertation Development

Doctoral candidates requiring additional time to produce an approved dissertation enroll in this course until the dissertation is approved for defense. (2 credits)

DST9210 Dissertation Documentation and Defense

In this course, candidates produce and submit the final draft of the dissertation for approval. Once the document has been approved by the Dissertation Committee Chairperson candidates present their findings to the Dissertation Committee at the defense. (2-6 credits)
Prerequisite: Approval to Defend

DST9300 Instrument Validation and Review

In this course, doctoral candidates conduct a pilot to validate the approved instruments for their research project, analyzing the results and making adjustments as needed. If necessary, students may be required to resubmit instruments for IRB approval. (2-6 credits)
Prerequisite: RES9160

DST9310 Data Collection

In this course, doctoral candidates implement the approved research design by conducting the approved research design and collecting data. (2-6 credits)

DST9320 Data Analysis and Findings

In this course, doctoral candidates implement the approved data analysis plan and review findings with advisors. (2-6 credits)

DST9325 Continuing Dissertation Development

Doctoral candidates requiring additional time to produce an approved dissertation enroll in this course until the dissertation is approved for defense. (2 credits)

DST9330 Dissertation Documentation and Defense

In this course, candidates produce and submit the final draft of the dissertation for approval. Once the document has been approved by the Dissertation Committee Chairperson candidates present their findings to the Dissertation Committee at the defense. (1-6 credits)
Prerequisite: Approval to Defend

PROFESSIONAL DEVELOPMENT COURSES

IC7000 (ISC)2 CISSP CBK Review Seminar

This course, taught by an authorized partner of (ISC)2, provides students with CBK domain review materials and instructor guidance in preparation for the (ISC)2 CISSP certification exam. (0 credits)

Privacy

Legal