GET OUR NEWSLETTER |
Master of Science in Information Assurance
Degree Overview
Stratford provides a student-centric classroom environment to accommodate all learning styles.
The Master of Science in Information Assurance (MSIA) provides a thorough knowledge base for managers and technology professionals concerned with the design, development, implementation, operation, and management of secure information systems and with the protection of an organization's information assets. The MSIA provides students with a practical understanding of the principles of data protection, network security, and computer forensics, in addition to understanding the ethical, legal, and policy issues associated with information security.
Upon completion of this program, graduates will understand both business and technology concepts. Students graduating in the MSIA program will help to fill the need for well-educated system security specialists in the government, private sector, and academia.
Program Requirements and Online Options
Students can complete the program through classroom instruction, online instruction, or a combination of both.
Credits Required
Number of Classes
Core Component
27
6
Electives
27
6
Total Required for Graduation
54
12
Core Courses
Elective Pool
Quantitative Foundations for Telecommunications - CIS510
Credits: 4.5Prerequisites: None
The course provides the quantitative foundations of mathematical and electrical concepts in modern telecommunications. Topics include polynomials, exponentials, linear algebra, complex analysis, differential equations, numerical analysis, quadratic equations, graph theory, trigonometric functions, radial measure and sine/cosine functions, exponentials and logarithms, basic probability and statistics, fundamentals of matrix algebra and vectors, basic Boolean logic; circuit elements (resistor, capacitor, inductor), basic electrical circuits, units, Ohm's law, Kirchhoff's law, decibel notation.
Research Methods - EBM502
Credits: 4.5Prerequisites: None.
This course outlines and analyzes information gathering and assessment, which drives proper control of resources and performance, critical prerequisites for business success. Students will learn methods for planning, data analysis, and communication of results in applied business research. Students will utilize these skills in a team research project on a regional organization. Specifically, students will learn about the scientific methods, research/design requirements and objectives. Course work will involve qualitative, quantitative, and case studies; performance metrics; design procedures and control; sources of error and bias. In addition evaluation tools and formal validation methods will be discussed.
Software Engineering - SOF500
Credits: 4.5Prerequisites: None.
The course covers basic concepts and practices within the field important to both the practitioner and the theorist, as the rate of change in software engineering technology continues to increase. It also examines current issues in systems engineering, software architectures, product assurance principles, and software project management, all described in terms of established software process improvement models. Various industry life-cycle models are presented, with examples of their use. Case studies may also be included.
Network Security - SOF570
Credits: 4.5Prerequisites: None.
Security concepts needed for the design, use, and implementation of secure voice and data communications networks, including the Internet, are introduced. The course provides an overview of networking technology and standards including an introduction to the Internet communications protocols. Specific security subjects addressed include firewalls, packet filtering, virtual private networks (VPNs), wireless network security, and operating system security.
Issues and Trends in Software Systems - SOF585
Credits: 4.5Prerequisites: None.
A study of the technological advances in computer systems and in the many environments affected by advancing technology is presented. Problems relating to ethics, security, the proliferation of databases, risk analysis, telecommunications, artificial intelligence, and human-machine interaction are examined. The rapid development of computer-based information systems in response to management needs, as well as trends and developments in the field are discussed.
Software Engineering Project - SOF590
Credits: 4.5Prerequisites: None.
This course provides experience in applying software-engineering techniques by giving the students an opportunity to produce software when working in teams under the schedule constraints commonly experienced in industry. The instructor will emulate the vagueness shown by typical customers in describing requirements. The instructor serves as a guide and mentor, not as a traditional teacher.
Project Management - EBM680
Credits: 4.5Prerequisites: None.
The course will try to focus on effective organization of projects, track costs and time expenditures, manage quality and risk, evaluate human resources requirements and overcome potential obstacles. Whether managing an office move, implementing a new accounting system or launching a special program initiative, this course will provide the crucial skills for success.
Curricular Practical Training Practicum - SOF599
Credits: 4.5Prerequisites: Permission of the Dean
Allows a student to enrich the learning experience in their chosen career area and enhance their career development. Provides a three-way cooperative educational partnership among student, employer, and Stratford University with each sharing responsibility through a part-time (maximum 20 hours per week) supervised work experience.
Applied Cryptography - SOF610
Credits: 4.5Prerequisites: None
This course is a comprehensive introduction to modern cryptography that is aimed primarily at those interested in applications. The topics discussed will include an introduction to classical cryptography: encryption algorithms, hash functions, and message authentication codes. In the area of public-key cryptography, topics will include an overview of specific systems (Diffie-Hellman, RSA, DSA, etc.) and a few advanced protocols. The security of these schemes and the use of public-key techniques for generating digital signatures will be described. An emphasis will be placed on tools that are currently being used to secure the Internet and enable secure electronic commerce.
Database Security - SOF620
Credits: 4.5Prerequisites: SOF510
This course focuses upon security threats and issues specific to databases. This comprehensive database security course provides all the information that both Data Base Administrators (DBA) and security professionals need to develop, deploy and maintain a secure database solution. This vendor neutral course expands the security context of database technologies and examines in detail the exploitation of database vulnerabilities – irrespective of the underlying vendor technology. It exposes the pitfalls of database design, their means of identification and the methods of exploiting vulnerabilities.
Advanced Network Security - SOF630
Credits: 4.5Prerequisites: SOF570
This course delivers a comprehensive overview of network security, including general security concepts. Communication Security is studied, including remote access, e-mail, the Web, directory and file transfer, and wireless data. Common network attacks are introduced. Cryptography basics are incorporated, and operational/organizational security is discussed as it relates to physical security, disaster recovery, and business continuity. Computer forensics is introduced.This course involves an intense examination of network security defense techniques and countermeasures with defense fundamentals explained in great detail. Topics include network defense techniques such as designing firewall systems and IDS, configuring firewalls, VPNs, trojan port members, and security related RFCs.
Secure E-Commerce - SOF640
Credits: 4.5Prerequisites: None
This course covers the theoretical foundations, implementation problems, and research issues of the emerging area of electronic commerce. It discusses technological, conceptual and methodological aspects of electronic commerce. The course format combines lectures, seminar presentations and classroom discussions. Cryptography review, cryptographic protocols, secure electronic transactions, public key certificates and infrastructures, authentication and authorization certificates, secure credential services and role-based authorization, mobile code security, security of agent-based systems, electronic payment systems, intellectual property protection, secure time stamping and notarization.
Secure Software Verification and Validation - SOF650
Credits: 4.5Prerequisites: SOF500
This course presents theory and practice of software testing. Covers structural testing including such topics as syntax testing, mutation testing, tools for software testing, testing specifications, black-box and white-box testing, code inspections, metrics, usability testing, testing documentation, website testing, security testing, beta testing, quality assurance, and software safety.
Intrusion Technologies and Defenses - SOF660
Credits: 4.5Prerequisites: SOF570
The objective of this course is to provide an in depth introduction to the science and art of intrusion detection. The course consists of lectures and a series of interactive research oriented seminars. Topics covered include: overview of intrusions, history and state of the art of intrusion detection, the principles and techniques of intrusion detection, the limitations and open problems of intrusion detection, countermeasures against intrusion detection, case study of representative techniques used in intrusion detection systems, forensics, virus and worm defense. In addition to the principles and techniques of intrusion detection, the course will have substantial hands-on components.
Authentication Technologies and Standards - SOF670
Credits: 4.5Prerequisites: SOF570
The objective of the course is to provide an overview of the use of authentication for identification with an emphasis on its role in information assurance, technical methodology of authentication an evaluation of authentication systems.
Wireless Security - SOF675
Credits: 4.5Prerequisites: None
This course enables an individual to plan, select, and implement the appropriate wireless hardware and deploy the correct security controls to support a typical environment. A focus on RF (radio frequency) technologies in a vendor neutral environment, with hands-on laboratories to reinforce concepts, allows participants the broadest exposure to key concepts. This course is committed to be the most current in the industry, with professionally developed laboratory exercises and real world hardware. The Wireless LAN Security course consists of hands on learning using the latest enterprise wireless LAN security and auditing equipment. This course addresses in detail the most up-to-date WLAN intrusion and DoS tools and techniques, functionality of the 802.11i amendment to the 802.11 standard, the inner-workings of each EAP type used with wireless LANs today, and every class and type of WLAN security solution available on the market from wireless intrusion prevention systems to wireless network management systems.
Operating System Security - SOF680
Credits: 4.5Prerequisites: SOF560
This course provides an in-depth examination of the principles of distributed systems in general, and distributed operating systems in particular. Covered topics include processes and threads, concurrent programming, distributed interprocess communication, distributed process scheduling, shared virtual memory, distributed file systems, security in distributed systems, distributed middleware and applications such as the web and peer-to-peer systems. Some coverage of operating system principles for multiprocessors will also be included. A brief overview of advanced topics such as multimedia operating systems, real-time operating systems and mobile computing will be provided, time permitting.
Computer Forensics - SOF685
Credits: 4.5Prerequisites: None
This course focuses on review of the specific manifestations of cybercrime, including hacking, viruses, and other forms of malicious software. Methods to investigate cybercrime, focusing on requirements for collection and reporting of evidence for possible use in criminal cases. Topics include an overview of the forensic relevance of encryption, the examination of digital evidence for clues, and the most effective way to present evidence and conclusions in a court of law.
Disaster Recovery and Business Continuity Planning - SOF690
Credits: 4.5Prerequisites: None
This course will introduce the fundamental concepts common to disaster prevention and recovery planning methods; the focus will be on the development of emergency response plans (ERPs) and disaster recovery plans (DRPs). The practical methods developed in this course will include gathering, analyzing, and managing this information. This course will enable the students to develop a framework to justify disaster prevention and recovery expenditures based on a prioritized accounting of specific organizational vulnerabilities and risks. The course establishes this concept as part of a broader consequence management (CM) concept, which includes business continuity, business process reconstitution, and ongoing training, testing, and assessment support for these plans.
Threat and Vulnerability Management - SOF695
Credits: 4.5Prerequisites: None
This course addresses one of the key aspects of information security: threat and vulnerability management. The Information Security Risk Management course endeavors to give students the tools they need to implement an effective information security risk management program in their organizations. Students are taught a phased approach to information security risk management based on the OCTAVE criteria. Students will learn to build asset-based threat profiles, identify infrastructure vulnerabilities and develop security strategies and plans. At the end of this course students will have the tools necessary to conduct a risk assessment of their organization and implement mitigation strategies.
Risk Assessment and Management - SOF700
Credits: 4.5Prerequisites: SOF695
This course describes the risk management methodology as a specific process, a theory, or a procedure for determining your assets, vulnerabilities, and threats and how security professionals can protect them. Risk Management course is targeted towards security professionals who need to learn risk management skills. It goes beyond the physical security realm to encompass all risks to which a company may be exposed.
Auditing and Incident Response - SOF705
Credits: 4.5Prerequisites: Permission of the Instructor
This course presents information systems audit and control concepts and management practices. As business continues towards a more substantial reliance upon the capabilities of information systems, it becomes increasingly important for auditors to understand information systems and how they relate to financial and general organizational controls. Upon completion of this course students will be able to conduct audits of information systems. This course presumes prior exposure to general audit concepts and a general knowledge of information systems.
Security Leadership and Management - SOF710
Credits: 4.5Prerequisites: None
This course is designed for individuals with managerial or supervisory responsibility for information security staff. The diligent manager will learn the essential, up-to-date knowledge and skills required to lead the security component of any information technology project or department. This training is designed for the manager who wants to get up to speed fast. It blends comprehensive coverage of security technology with a focus on the management application, with leadership and organizational tips. In addition, the course provides summary information from the NIST SP 800 documents as well as tips from the best selling business books.
