Gain the fundamental knowledge and expertise in network security and forensics that is necessary for security in networked environments. In the advanced certificate in cybersecurity, you’ll learn to make computers and networks resistant to attack by monitoring intrusions and closing off vulnerabilities.
The application of forensics allows successful attacks on computer systems to be detected. This involves gathering information on the nature and extent of the attack for presentation in a court of law, as well as assessing the extent of the damage to an organization. Courses taken as part of this certificate can transfer into the MS program in computing security.
What is a graduate certificate?
A graduate certificate, also called an advanced certificate, is a selection of up to five graduate level courses in a particular area of study. It can serve as a stand-alone credential that provides expertise is a specific topic that enhances your professional knowledge base, or it can serve as the entry point to a master's degree. Some students complete an advanced certificate and apply those credit hours later toward a master's degree.
This course is designed to provide students with the advanced concepts needed to establish network security strategies to ensure adequate protection for the corporate environment and yet provide accessibility for the corporate community. (This course is restricted to students in the COMPSEC-MS program.) Lecture 3 (Spring).
Advanced Computer Forensics
This course provides students with the latest techniques and methods needed for extracting, preserving and analyzing volatile and nonvolatile information from digital devices. Students will gain exposure to the spectrum of available computer forensics tools along with developing their own tools for “special need” situations. The core forensics procedures necessary for ensuring the admissibility of evidence in court, as well as the legal and ethical implications of the process, will be covered on both Unix and Windows platforms, under multiple file systems. Therefore, students must possess a knowledge of available filesystems on both platforms. (Prerequisites: This course is restricted to BS/MS students in Computing Security and students in the COMPSEC-MS program.) Lecture 3 (Fall).
Information Security Risk Management
This course will provide students with an introduction to the principle of risk management and its three key elements: risk analysis, risk assessment and vulnerability assessment. Students will also learn the differences between quantitative and qualitative risk assessment, and details of how security metrics can be modeled/monitored/controlled and how various types of qualitative risk assessment can be applied to the overall assessment process. Several industry case studies will be studied and discussed. Students will work together in teams to conduct risk assessments based on selected case studies or hypothetical scenarios. Finally, they will write and present their risk assessment reports and findings. (Prerequisites: This course is restricted to BS/MS students in Computing Security and students in the COMPSEC-MS program.) Lecture 3 (Spring).
Computer System Security
The importance of effective security policies and procedures coupled with experience and practice is emphasized and reinforced through research and practical assignments. Organization and management of security discipline and response to threats is studied. Case studies of effective and failed security planning and implementation will be examined and analyzed. The issues influencing proper and appropriate planning for security and response to attacks will be studied. To be successful in this course students should be knowledgeable in networking, systems, and security technologies. (Prerequisites: This course is restricted to BS/MS students in Computing Security and students in the COMPSEC-MS program.) Lab 2, Lecture 3 (Fall).
Computer Viruses and Malicious Software
Computer malware is a computer program with malicious intent. In this course, students will study the history of computer malware, categorizations of malware such as computer viruses, worms, Trojan horses, spyware, etc. Other topics include, but are not limited to, basic structures and functions of malware, malware delivery mechanism, propagation models, anti-malware software, its methods and applications, reverse engineering techniques. Students will conduct research to understand the current state of the computer malware defense and offense. (Prerequisites: This course is restricted to BS/MS students in Computing Security and students in the COMPSEC-MS program.) Lec/Lab 3 (Fall).
Students will examine the areas of intrusion detection, evidence collection, network auditing, network security policy design and implementation as well as preparation for and defense against attacks. The issues and facilities available to both the intruder and data network administrator will be examined and evaluated with appropriate laboratory exercises to illustrate their effect. The students will be provided with an understanding of the principles and concepts of wired and wireless data network security. Students will perform a series of laboratory or homework experiments in order to explore various mechanisms for securing data networks including physical layer mechanisms, filters, applications and encryption. Students will engage in attack/defend scenarios to test their deployments against other teams. Students should be knowledgeable in networking technologies. (Prerequisites: This course is restricted to BS/MS students in Computing Security and students in the COMPSEC-MS program.) Lecture 3 (Spring).
Total Semester Credit Hours
To be considered for admission to the advanced certificate in cybersecurity, candidates must fulfill the following requirements:
International applicants whose native language is not English must submit official test scores from the TOEFL, IELTS, or PTE. Students below the minimum requirement may be considered for conditional admission. Refer to Graduate Admission Deadlines and Requirements for additional information on English requirements. International applicants may be considered for an English test requirement waiver. Refer to Additional Requirements for International Applicants to review waiver eligibility.
Based on the evaluation of an applicant's academic and relevant experience, the graduate program director may require some applicants to complete a bridge course to fulfill any gaps in the required prerequisites needed for admission to the program. The bridge course, Introduction to Computing Security (CSEC-600), is not part of the 12 credit hours required for the advanced certificate.
This certificate is intended for part-time study; therefore, RIT cannot issue I-20 paperwork. Courses are offered on-campus and online.