|
NORTH CENTRAL TEXAS COLLEGE
COURSE SYLLABUS
The North Central Texas College (NCTC) Course Syllabus provides the following as required by the Texas Higher Education Coordinating Board (THECB): (1) a brief description of the course including each major course requirement, assignment and examination; (2) the learning objectives for the course; (3) a general description of the subject matter of each lecture or discussion; and (4) any required or recommended readings. Contact information for the instructor is also provided. The Course Syllabus also provides institutional information to indicate how this course supports NCTC’s purpose and mission. Information specific to a particular section of the course will be included in the Class Syllabus and distributed to enrolled students.
|
|
|
Course Title: Info Tech Security
|
|
Course Prefix & Number: ITSY1342
|
Section Number: 340
|
Term Code: 19/S
|
|
Semester Credit Hours: 3
|
Lecture Hours: 32
|
Lab Hours: 32
|
|
Course Description (NCTC Catalog):
Instruction in security for network hardware, software, and data, including physical security; backup procedures; relevant tools; encryption; and protection from viruses.
|
|
Course Prerequisite(s):
|
|
o - Academic General Education Course (from Academic Course Guide Manual but not in NCTC Core)
o- Academic NCTC Core Curriculum Course
n - WECM Course
|
|
Name of Instructor:
|
Ervin Frenzel
|
|
Campus/Office Location:
|
Online only
|
|
Telephone Number:
|
806-570-7658
|
|
E-mail Address:
|
efrenzel@nctc.edu
|
|
Name of Chair/Coordinator:
|
Susan Svane
|
|
Office Location:
|
IT Career Connection Center
|
|
Telephone Number:
|
940-498-6438
|
|
E-mail Address:
|
SSvane@nctc.edu
|
My contact information is available and if you are experiencing difficulty with any portion of this course, contact me immediately – I cannot help if I do not know there is a problem. I am available through email but may take longer to respond, if the contact is critical call me. My phone is on from 0700 to 2000 daily, but I may not be available to answer a phone call immediately Sunday night through Wednesday afternoon at 4:30), I will return your call as soon as I can during this timeframe. Typically that is after 4:30 pm (Monday through Thursday), I am available during the day on Friday, Saturday, and Sunday.
Office Hours (online): Thursday from 16:30 to 18:30
REQUIRED OR RECOMMENDED COURSE MATERIALS
Required – Text: CompTIA Security+ Study Guide, 6th Edition, Emmett Dulaney and Chuck Easttom, (ISBN:978-1-118-87507-0)
Labs will be selected “Hands on Projects” at the end of each chapter. No additional purchase is required for these.
Recommended: Flash Drive. You are required to keep all lab work until the end of the semester.
COURSE REQUIREMENTS, EVALUATION METHODS, and GRADING CRITERIA
|
# of Graded Course Elements
|
Graded Course Elements
|
Weighted Percentage Values
|
|
12
|
Homework (Chapter homework due every week)
|
30% of grade
|
|
12
|
Labs (based upon each weeks chapter – lowest 2 will be dropped)
|
20% of grade
|
|
14
|
Discussion (weekly discussions, lowest two grades will be dropped)
|
20% of grade
|
|
2
|
Exams
(Averaged – no grades dropped)
|
30% of grade
|
|
|
A
|
>=89.5%
|
|
D >=59.5%
|
|
|
B
|
>=79.5%
|
|
F <=59.49%
|
|
|
|
C
|
>=69.5%
|
|
|
|
STUDENT LEARNING OUTCOMES
WECM End-of-Course Outcomes: National Institute of Standards and Technology (NIST) Guidelines and other best practices; develop backup procedures to provide for data security; use network operating system features to implement network security; identify computer and network threats and vulnerabilities and methods to prevent their effects; use tools to enhance network security; and use encryption techniques to protect network data.
|
|
At the successful completion of this course the student will be able to:
|
|
1
|
Discover and become familiar with National Institute of Standards and Technology (NIST) guidelines and other best practices.
|
|
2
|
Develop backup procedures to provide for data security
|
|
3
|
Use network operating system features to implement network security
|
|
4
|
Identify computer and network threats and vulnerabilities and methods to prevent their effects
|
|
5
|
Use tools to enhance network security
|
|
6
|
Use encryption techniques to protect network data
|
Attendance is based on participation in the class, so you are expected to actively participate in the assignments and the graded discussion forums on a weekly basis. I also expect you to check your email everyday on M-F for any additional content.
Every other Saturday (Starting on October 27th – to discuss expectations) – A class meetings will be held to help explain topics that might otherwise be confusing, these classes will be held at the Flower Mound Campus room 201 from 10:00 to 12:00, this is for lecture and lab assistance. The first day of the in class portion is Saturday, January 26, 2019. If you cannot attend you must let me know prior to the class being held, otherwise I will expect to see you there. Exams are not allowed to be turned in late (exam integrity). Discussion questions are only allowed opened during the week in which they are due.
Last Day to Withdraw: For the Spring 2019 semester, the last day to withdraw from a course with a “W” is April 4, 2019. If a student decides to officially drop this course, then it is the student’s responsibility to submit the required forms to the registrar. Students who cease attending and who do not complete a drop slip prior April 4, 2019 will earn a grade of “F”.
Labs are available from the first day of the semester until the 11th of May, you can work ahead, but they will not be accepted after the due date.
CLASSROOM DISCUSSION POLICY
Classroom discussions are available only during the week that they are intended to be available, submissions are only accepted based upon work turned in during that week. A complete listing of all discussion questions is available in the class room “Modules” area. You are allowed to read ahead and prepare your initial responses.
Initial responses are expected to be approximately 250 words (may be more or less as long as they have what can be deemed to be substantive content and grounded in relevant concepts).
Peer responses are expected to be approximately 250 words (combined) these must have substantive content and grounded in relevant concepts.
**No personal attacks will be tolerated during the classroom discussions, first offense is a notice/warning, second offense depending upon the offense can involve office of student affairs.**
Tentative Schedule for ITSY-1342 Sec 340 – Info Tech Security
|
Week
|
Dates
|
Topic
|
General Description of Subject Matter
|
|
1
|
Jan 22 –
Jan 26
|
Measuring and Weighing Risk
|
Risk assessment, Developing policies, standards, and guidelines (Saturday Mtg – Rm 201)
|
|
2
|
Jan 27 –
Feb 2
|
Monitoring and Diagnosing Networks
|
Monitoring networks, Understanding hardening, Securing the network, Security posture, Reporting security issues, and Differentiating between detection controls and prevention controls
|
|
3
|
Feb 3 - 9
|
Understanding Devices and Infrastructure
|
Mastering TCP/IP, Designing a secure network, Understanding the various network infrastructure devices (Saturday Mtg – Rm 201)
|
|
4
|
Feb 10 - 16
|
Access Control, Authentication, and Authorization
|
Understanding access control basics, Understanding remote access connectivity, Understanding authentication services, Understanding access control, Implementing access controlling best practices
|
|
5
|
Feb 17 - 23
|
Protecting Wireless Networks
|
Working with wireless systems, Understanding wireless devices, Wireless vulnerabilities to know (Saturday Mtg – Rm 201)
|
|
6
|
Feb 24 – Mar 2
|
Securing the Cloud
|
Working with cloud computing, Working with virtualization, Securing and the cloud
|
|
7
|
Mar 3 - 9
|
Host, Data, and Application Security
|
Application hardening, Host security, Protecting data through fault tolerance, Application security, Best practices for security (Saturday Mtg – Rm 201)
|
|
8
|
Mar 17 - 23
|
Cumulative Exam Weeks 1-7
|
Cumulative Exam Weeks 1-7
|
|
9 – 10
|
Mar 24 – Apr 6
|
Cryptography
|
Overview, Modern cryptography, Using cryptographic systems, Understanding cryptography standards and protocols, Using public-key infrastructure (Saturday March 30, Mtg – Rm 201)
|
|
11 - 12
|
Apr 7 - 20
|
Malware, Vulnerabilities, and Threats
|
Understanding malware, Surviving viruses, Understanding various types of attacks, Identifying types of application attacks, Tools for finding threats (Saturday April 13, Mtg – Rm 201)
|
|
13
|
Apr 21 - 27
|
Social Engineering and Other Foes
|
Understanding social engineering, Understanding physical security, Environmental controls, Control types, Data policies (Saturday Mtg – Rm 201)
|
|
14
|
Apr 28 – May 4
|
Security Administration
|
Third-party integration, Understanding security awareness and training, Classifying information, Information access control, Complying with privacy and security regulations, Mobile devices, Alternative methods to mitigate security risks
|
|
15
|
May 5 - 11
|
Disaster Recovery and Incident Response
|
Issues associated with business continuity, Reinforcing vendor support, Penetration testing (Saturday Mtg – Rm 201)
|
|
16
|
May 12 - 18
|
Cumulative Exam Weeks 9-15
|
Cumulative Exam Weeks 9-15
(See Schedule exam closes by Thursday)
|
Spring 2019 School Master Schedule
|
Event
|
Spring 2019
|
Spring 2019
1st 8-Week
|
Spring 2019
2nd 8-Week
|
May
Mini-Mester
|
|
Saturday Campus Hours
9:00 AM – 1:00 PM
(Gainesville & Corinth Campuses Only)
|
January 19
|
January 19
|
|
|
|
Last Day of 100% Refund
for Courses Dropped
|
January 21
|
January 21
|
March 24
|
May 19
|
|
Martin Luther King Holiday Observed
College Closed
|
January 21
|
January 21
|
|
|
|
Classes Begin
|
January 22
|
January 22
|
March 25
|
May 20
|
|
Official Date of Record
|
February 4
|
January 28
|
April 1
|
May 22
|
|
Spring Break
College Closed
|
March 11-16
|
|
|
|
|
Memorial Day Observed
College Closed
|
|
|
|
May 27
|
|
Last day to withdraw from a class
with ‘W’
|
April 4
|
February 21
|
April 25
|
May 29
|
|
Final Exams
(see final exam schedule)
|
May 11-16
|
March 21
|
May 16
|
June 6
|
|
Commencement Ceremonies
|
May 17
|
|
|
|
|
Term Ends
|
May 17
|
March 22
|
May 17
|
June 6
|
|
Final Grades, Attendance Rosters
& Grade Rolls due at Noon
|
May 18
|
March 23
|
May 18
|
June 8
|
|
STUDENT SUPPORT SERVICES
Disability Services (OSD)
The Office for Students with Disabilities (OSD) provides accommodations for students who have a documented disability. A disability is anything that can interfere with learning, such as a learning disability, psychological challenge, physical illness or injury. Accommodations may include extra time on tests, tests in a distraction reduced environment, volunteer note taker in class, etc.
On the Corinth Campus, go to room 170 or call 940-498-6207. On the Gainesville Campus, go to room 110 in the Administration (100) Building or call 940-668-4209. Students on the Bowie, Graham, Flower Mound, and online campuses should call 940-668-4209 to arrange for an intake appointment with OSD.
North Central Texas College is on record as being committed to both the spirit and letter of federal equal opportunity legislation, including the Americans with Disabilities Act (ADA) of 1990, ADA Amendments Act of 2009, and Section 504 of the Rehabilitation Act of 1973 (P.L. 93-112).
http://www.nctc.edu/StudentServices/SupportServices/Disabilityservices.aspx
Support Services
Counseling and Testing staff offer a variety of services to current and prospective students, such as College 101, placement testing, academic advising and course registration, transfer assistance, and College Success seminars (Time Management, Study Skills, Test Anxiety, Choosing a Major, Learning Style Strategies, Career Exploration), and much more. http://www.nctc.edu/StudentServices/CounselingTesting.aspx
Student Success offers academic coaching, tutoring, including a Writing Center, a Math Lab, free 24/7 online tutoring through Grade Results and assist new students acclimate to college by providing computer lab services for prospective students. First generation students can also participate in TRIO which offers specialized support services.
http://www.nctc.edu/StudentServices/SupportServices.aspx
Financial Aid offers financial resources for students that qualify, visit the financial aid offices for more information. http://www.nctc.edu/FInancialAidHome.aspx
EEOC Statement
North Central Texas College does not discriminate on the basis of race, color, national origin, gender, religion, age, or disability in the employment or the provision of services.
Early Alert and NCTC Cares
The NCTC Early Alert program has been established to assist students who are at risk of failing or withdrawing from a course. Your instructor may refer you to this program if you are missing assignments, failing tests, excessively absent, or have personal circumstances impacting your academic performance. If submitted as an Early Alert you will be notified via your NCTC e-mail address and then contacted by a Counseling and Testing advisor or counselor to discuss possible strategies for completing your course successfully.
The NCTC CARES (Campus Assessment Response Evaluation Services) Team addresses behavior which may be disruptive, harmful or pose a threat to the health and safety of the NCTC community-such as stalking, harassment, physical or emotional abuse, violent or threatening behavior, or self-harm. As a student, you have the ability to report concerning behavior which could impact your own safety or the safety of another NCTC student. Just click the NCTC CARES Team logo posted on MyNCTC, or send an e-mail to CARESTeam@nctc.edu. As always, if you feel there is an immediate threat to your own safety or welfare (or to another student), please call 911 immediately.
Student Success Center
The Student Success Center is designed to help all students at NCTC develop tools to achieve their academic goals. The center links students to FREE tutoring, including a Writing Center, a Math Lab, and free online tutoring in the evening. The program helps students acclimate to college by providing students free interactive workshops. For more information, please visit your nearest Student Success Center.
Tobacco-Free Campus
NCTC restricts the use of all tobacco products including cigarettes, cigars, pipes and smokeless tobacco on campus property.
|
|
|
|
Unit Competencies
I. Demonstrate ability to research the National Institute of Standards and Technology (NIST) guidelines and other best practices.
Performance Objectives:
The student will:
- Demonstrate accessing the National Institute of Standards and Technology (NIST) website and how to search the guidelines.
- Detail best practices according to the NIST guidelines.
Assessment:
Lab/Homework Project evaluations
Multiple Select & Multiple Choice quiz for each Chapter
Multiple Select & Multiple Choice exam over textbook.
II. Develop backup procedures to provide for data security
Performance Objectives:
The student will:
- Demonstrate how to create a backup plan.
- Explain the differences between the types of data backup.
- Explain the continuous data protection backup technology.
Assessment:
Lab/Homework Project evaluations
Multiple Select & Multiple Choice quiz for each Chapter
Multiple Select & Multiple Choice exam over textbook.
III. Demonstrate how to use network operating system features to implement network security.
Performance Objectives:
The student will:
- Show how to perform a security baseline.
- Show how to configure operating system security settings.
- Demonstrate how to deploy and manage security settings.
- Explain how to implement patch management
Assessment:
Lab/Homework Project evaluations
Multiple Select & Multiple Choice quiz for each Chapter
Multiple Select & Multiple Choice exam over textbook.
IV. Identify computer and network threats and vulnerabilities and detail prevention methods.
Performance Objectives:
The student will:
- Explain computer and network threats.
- Explain computer and network vulnerabilities.
- Detail prevention methods for threats and vulnerabilities.
Assessment:
Lab/Homework Project evaluations
Multiple Select & Multiple Choice quiz for each Chapter
Multiple Select & Multiple Choice exam over textbook.
V. Demonstrate how to use tools to enhance network security.
Performance Objectives:
The student will:
- Demonstrate the use of protocol analyzers.
- Demonstrate the use of proxies.
- Demonstrate the use of Virtual Private Networks.
Assessment:
Lab/Homework Project evaluations
Multiple Select & Multiple Choice quiz for each Chapter
Multiple Select & Multiple Choice exam over textbook.
VI. Show how to use encryption techniques to protect network data
Performance Objectives:
The student will:
- Explain encryption through software.
- Detail file and file system cryptography.
- Explain hardware encryption.
- Explain whole disk encryption.
Assessment:
Lab/Homework Project evaluations
Multiple Select & Multiple Choice quiz for each Chapter
Multiple Select & Multiple Choice exam over textbook.
Workforce Education Program Elements (SCANS Skills)
The Secretary’s Commission on Achieving Necessary Skills (SCANS) conducted extensive research and interviews and determined that “workplace know-how” consists of two elements: foundations skills and workplace competencies. Upon successful completion of the courses in this program, students will have demonstrated the following competencies:
- Foundation Skills
- Basic Skills: A worker must (i) read, (ii) write, (iii) perform arithmetic and mathematical operations, (iv) listen, and (v) speak effectively.
- Thinking Skills: A worker must (i) think creatively, (ii) make decisions, (iii) solve problems, (iv) visualize, (v) know how to learn, and (vi) reason effectively.
- Personal Qualities: A worker must display (i) responsibility, (ii) self-esteem, (iii) sociability, (iv) self-management, (v) integrity, and (vi) honesty.
- Workplace Competencies
- Resources: A worker must identify, organize, plan, and allocate resources effectively. This includes (i) time, (ii) money, (iii) material and facilities, and (iv) human resources.
- Interpersonal Skills: A worker must work with others effectively to (i) participate as a member of a team, (ii) teach others new skills, (iii) serve clients/customers, (iv) exercise leadership, (v) negotiate, and (vi) work with diversity.
- Information: A worker must be able to (i) acquire and use information, (ii) organize and maintain information, (iii) interpret and communicate information and (iv) use computers to process information.
- Systems: A worker must understand complex interrelationships as in (i) understanding systems, (ii) monitor and correct performance, and (iii) improve and design systems.
- Technology: A worker must be able to work with a variety of technologies, e.g. (i) select technology, (ii) apply technology, and (iii) maintain and troubleshoot equipment.