College Catalog

Course Descriptions

Ethical Hacking and Penetration Testing

IAS311

Introduction to the process of securing an information system against attack. Study includes application of concepts learned in prerequisite classes to both defend and compromise a system. Various tools for managing and compromising systems are explored as well as safeguarding ancillary systems to prevent collateral damage during testing procedures. Legal and ethical issues associated with penetration testing are explored as well. Students must earn a grade of C or higher in CIT230 and MTH160 to enroll in this course. 3 Credits (3 Lecture) Prerequisite(s): CIT230 and CIT240 and MTH160.

Information Security Policy

IAS411

Introduction to the methodologies used to develop an organizational security policy. Study includes the legal and privacy issues that arise from establishing organizational security policies as well as evaluation tools and practices currently used in developing organizational security policies. Course work includes developing a comprehensive security policy and establishing the procedures necessary to enforce such policy. 3 Credits (3 Lecture) Prerequisite(s): CIT230 and CIT246. (Writing Enriched)

IAS Awareness, Training, and Education

IAS412

Introduction to the techniques involved in developing and disseminating information security training. Skills learned include determining the appropriate level of training needed for a given situation and identifying those who should be trained. 3 Credits (3 Lecture) Prerequisite(s): CIT230 and CIT246.

Contingency Planning

IAS413

Introduction to the methodologies used to develop organizational contingency plans. Study includes the analysis, planning, writing and testing of various contingency plans for organizations IT and IAS systems. Various tools and methodologies to assess the specific events that drive contingency planning efforts. Course work includes developing a comprehensive contingency plan for a given scenario, procedures for testing the plan, and criteria for evaluating the effectiveness of the plan. 3 Credits (3 Lecture) Prerequisite(s): IAS411.

Capstone: Secure Systems Administrator

IAS436

Study and application of concepts of system design, acquisition, and management within the context of deploying secure systems. Study includes methodologies for designing, acquiring, implementing, maintaining, and retiring systems that must adhere to organizational policies. Study also includes activities required by system administrator to support formal system audit or certification. 3 Credits (3 Lecture) Prerequisite(s): IAS412 and IAS413.

System Certification and Accreditation Planning

IAS451

Introduction to the process of preparing for an audit to certify that an information system meets required security stands. Study includes the process for planning for a formal security audit. Students prepare supporting documentation necessary to plan for and conduct a system audit. 3 Credits (3 Lecture) Prerequisite(s): IAS411.

Capstone: Secure System Auditing

IAS456

Study and application of system certification and accreditation (C&A) as they pertain to organizational information systems. Study includes the methodologies used to perform a comprehensive system audit based on a previously developed audit action plan. Capstone work includes performing a comprehensive audit and developing an audit report for a given information system. 3 Credits (3 Lecture) Prerequisite(s): IAS451.

Secure System Accreditation and Certification

IAS461

Introduction to the process of certifying that an information system meets required security standards. Study includes the process for preparing a system for a formal security audit, conducting the audit, collecting the audit data, interpreting the data, identifying required remediation, and preparing a report of the results. 3 Credits (3 Lecture) Prerequisite(s): IAS411.

Risk Analyst Capstone

IAS466

Study and application of risk analysis and risk management as they pertain to organizational information systems. Study includes the methodologies used to develop an organizational security plan. Capstone work includes development of a comprehensive risk management plan and the processes necessary to implement the plan. 3 Credits (3 Lecture) Prerequisite(s): IAS412 and IAS461.

Advanced Topics in Information Assurance and Security

IAS490

Emerging issues in information assurance and security, drawing upon repositories of information that document these issues. Emphasis on evaluating the information with an eye toward updating mitigation strategies within the context of an organization. 3 Credits (3 Lecture) Prerequisite(s): IAS461 or IAS413. Spring Only.

IAS Seminar I

IAS492A

First of two semester-long forums for discussing and exploring issues related to information assurance and security. The context is interdisciplinary and focuses, in part, on issues external to IAS that affect how an organization can effectively implement and manage IAS. 1 Credit (1 Lecture) Prerequisite(s): IAS411. Fall Only.

IAS Seminar II

IAS492B

Second of two semester-long forums for discussing and exploring issues related to information assurance and security. The context is interdisciplinary and focuses, in part, on issues external to IAS that affect how an organization can effectively implement and manage IAS. 1 Credit (1 Lecture) Prerequisite(s): IAS411. Spring Only.

Pennsylvania College of Technology
One College Avenue
Williamsport, PA 17701

570-326-3761
800-367-9222

© 1995 Pennsylvania College of Technology. Penn College® and degrees that work® are registered in the U.S. Patent and Trademark Office.