This course will introduce students to digital forensics as practiced by local, state, and federal law enforcement. Students will gain hands-on experience with several digital forensic tools in this laboratory based course. Students taking this course will become familiar with the emerging responsibilities of cybercrime investigators, as well as developing a hands-on working knowledge of software commonly used at many law enforcement agencies. The course will use “Encase Tools” for laboratory activities.

Prerequisites: BCIS 1301 Fundamentals of Computer Information Systems

This course is designed to acquaint students with the security threats posed by both terrorist and criminal activity, and with strategies to combat these threats. Terrorism and security are defined as well as terrorism in its historical context. Varieties of terrorist groups, organizations and their actions are studied with targets of terrorism being a focus. Types of crime including street, employee, organization and white collar crime are studied.

This course will cover events such as identify theft, physical security during international travel, or invasion of one’s privacy. Focus will be on incidents such as cyber-crimes, fires, flooding, financial frauds, kidnapping of employees, and expropriation of resources. Covers the following conceptual areas: business risks and the management of business risk, IT risk as a component of business risk, the need to manage IT risks, and the basic type of controls required in a business system in order to control IT risks. Issues associated with new risks created by the use of the internet for business applications and electronic businesses are also covered.

This course will cover Network Security Policies and implementation of firewall policies, stateful firewalls, and firewall appliances. Network-related physical security, risk management and disaster recovery/contingency planning issues and housekeeping procedures.

This course covers the principles and practices of implementing computer database security in modern businesses and industries, including database security principles, database auditing, security implementation and database reliability. Focus will be on issues related to the design and implementation of secure data stores. Emphasis will be placed on multi-level security in database systems, covert channels, and security measures for relational and object-oriented database systems.

Prerequisites: BCSC 2305 Security Policy Analysis and Implementation

This course will cover the process of gathering Information Intelligence, identifying and solving Security Vulnerabilities, develop Exploits, scan and Produce Vulnerability Assessments and application of Network Attacking Techniques. Message authentication codes and key management. WLAN security, IPSec, SSL, and VPNs are also included in the topics to be covered.

Prerequisites: BCSC 2305 Security Policy Analysis and Implementation