Undergraduate - Herzing University

means that an intruder has available to gain access to the security of a network and various resources. Students will be introduced topenetration testing with the ethics and responsibilities of testing in mind as well as various security attacks to the advanced level. The course willhave an intense laboratory component which will be limited to student networks. Foundations in security policy, perimeter defenses, intrusiondetection, security monitoring, liability issues and ethics will be covered. Topics to be covered include, but are not limited to, penetration testing,enumerating, footprinting, scanning, hacking techniques, firewall, IDS, procedural documentation, host reconnaissance Trojans, backdoors, andsystem attacks such as WLAN, database servers, web servers, and e-mail servers. It must be noted that hacking is a felony in the United Statesand most other countries. When it is done by request and under a contract between an Ethical Hacker and an organization, it is legal. 4.00 credithours. Prerequisite: IS 282 Network Security.IT 345 Information Technology Project ManagementThis course covers techniques and managerial concepts of information technology project management. It prepares students to managecomplex information technology projects. Students are introduced to all five major process groups in project management, namely initiating,planning, executing, monitoring and controlling, and closing. Topics include: project life cycles; cost benefit analysis; work breakdown structure;staffing; roles, responsibilities, accountability; finance; estimation; budgeting; planning; risk management; scheduling; and tracking. The coursealso introduces students to computer software for project management. Students will work in teams to design a project plan for a real-world ITproject that demonstrates an ability to follow standard project management methodology. 3.00 credit hours. Prerequisite: IS 102 Computersand Application Software.IT 365 Network Infrastructure HardeningThis course offers an in-depth look at TCP/IP, performing volumes of packet captures and analysis, and auditing and generating documentationfor hardening procedures. Topics include implementation of IPSec in several different scenarios including a detailed and extensive lesson onsecuring Linux and Windows network infrastructures. The course will focus on best practices for network design to avoid security breachesand hardening network services such as DNS, DHCP, Directory Services, Operating System Routing, and NAT. Students will also be introducedto securing routers and switches in an infrastructure design as well as professional documentation of network infrastructures. Students willwork in teams on a project to demonstrate concepts of hardening a network infrastructure. 4.00 credit hours. Prerequisite: NT 200 NetworkInfrastructure Administration.IT 371 Web SecurityThis course offers an in-depth look at web application security for students who have some prior understanding of web technologies. There isan in-depth treatment of several significant topics such as user authentication, browser security, business logic, data handling, and distributedthreats. The course also covers motivating attacks, defense mechanisms, and security tools and techniques. Emphasis is placed on the skillsand abilities for analyzing and documenting web security as a security specialist in order to protect web-related services. Topics include:client security; cookies and web beacons; phishing; transaction security—certificates and secure connections; spyware and viruses; man-in-themiddleattacks; server security; denial-of-service attacks; attacks via clients (e.g., zombies and DOS); and DNS poisoning. 4.00 credit hours.Prerequisite: NT 370 Web Server Installation and Administration.IT 460 Advanced Security ImplementationThis course examines and explains the technologies required to design, build, and audit a trusted network. Topics include: detailed discussionsof corporate security culture; the reasons for building and components of a trusted network; and an in-depth look into cryptography, computerforensics law, and legislation, looking at the legalities surrounding networks and network security. Additional topics include a detailed look atbiometrics and its applications, strong authentication, and a discussion of two of the cornerstones of trusted networks: digital certificates anddigital signatures. 4.00 credit hours. Prerequisite: IS 282 Network Security.IT 470 Enterprise Security SolutionThis course begins with a discussion of the following: the needs and requirements for building a trusted network; an examination of CertificatePolicies and Certificate Practice Statements key to the planning and design of a trusted network; procedures for configuring certificateauthorities (CA), both stand-alone and as the root; and the creation and configuration of Certification Authority. Additional topics include:management of digital certificates, including their use and configuration on Smart Cards; the procedures available for securing local resources,including documentation of problems and solutions; encryption and biometrics; securing a wireless network in the enterprise; securing e-mail,including the use of S/MIME and PGP; and building a trusted network. 4.00 credit hours. Prerequisites: IS 282 Network Security and NT 200Network Infrastructure Administration.IT 491 Information Technology Capstone ProjectStudents work individually or in project teams on an industry-sponsored or instructor-approved project. They will identify a problem, developdesign specifications based on stakeholder needs, consider alternative designs, develop a schedule and/or budget, and design, develop,and test the proposed process or product. Interim reports to the sponsor or to the class, a final project report, and a final presentation willbe required. 3.00 credit hours. Prerequisite: Final semester.UNDERGRADUATE Course descriptions 419