Information Assurance Program Overview

1. Brandeis University Rabb school of continuing studies Division of graduate professional studies Information Assurance Program Overview Welcome to an overview of the Information Assurance program here at Brandeis University. Welcome to an overview of the Information Assurance program here at Brandeis University.

2. My name is Cynthia Phillips, and I�m the chair of the Information Assurance Program. My background is in information technology management and software development with a focus on requirements engineering. I�ve been a faculty member with Graduate Professional Studies since its inception in 1997. Information assurance is about protecting and defending information and information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. This presentation will explore the how the information assurance program here at Brandeis can equip you with the skills and knowledge needed to apply the principles and techniques of enterprise-wide information assurance.My name is Cynthia Phillips, and I�m the chair of the Information Assurance Program. My background is in information technology management and software development with a focus on requirements engineering. I�ve been a faculty member with Graduate Professional Studies since its inception in 1997. Information assurance is about protecting and defending information and information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. This presentation will explore the how the information assurance program here at Brandeis can equip you with the skills and knowledge needed to apply the principles and techniques of enterprise-wide information assurance.

3. What Is Information Assurance (IA)? Involves securing cyberspace and global information infrastructures Emphasizes strategic risk management over tools and tactics Covers a broad range of topics including reliability, and governance issues such as privacy, compliance, audits, business continuity, and disaster recovery Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu Now more than ever, governments and all types of industry require methodologies, techniques and disaster recovery plans to protect cyberspace and global information. Securing these resources is absolutely critical and can be achieved only when the core technologies, as well as the legal and electronic policy issues are adequately understood and addressed. Information assurance emphasizes strategic risk management over tools and tactics. It covers a broad range of topics including reliability, as well as governance issues such as privacy, compliance, auditing, business continuity, and disaster recovery.Now more than ever, governments and all types of industry require methodologies, techniques and disaster recovery plans to protect cyberspace and global information. Securing these resources is absolutely critical and can be achieved only when the core technologies, as well as the legal and electronic policy issues are adequately understood and addressed. Information assurance emphasizes strategic risk management over tools and tactics. It covers a broad range of topics including reliability, as well as governance issues such as privacy, compliance, auditing, business continuity, and disaster recovery.

4. IA is Interdisciplinary Draws from multiple fields Fraud examination Forensic science Military science Management science Systems engineering Security engineering Criminology Computer science Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu A key difference between information security and information assurance is that while information security draws primarily from computer science, IA is interdisciplinary and draws from multiple fields, such as forensic science, military science, management science, and criminology, among others.A key difference between information security and information assurance is that while information security draws primarily from computer science, IA is interdisciplinary and draws from multiple fields, such as forensic science, military science, management science, and criminology, among others.

5. IA Combats Threats Threats to organizations Inadequate security and authentication processes Increased frequency and complexity of computer viruses Corporate espionage Internet and extranet connectivity Endless stream of software patches to resolve vulnerabilities IA Solutions Education Strategic risk management Disaster recovery Regulatory compliance Enterprise-wide information assurance, security, and compliance Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu With ever increasing reliance on technology to conduct business, organizations must effectively manage risks while constantly facing new threats to their operations. The global economic infrastructure is becoming increasingly dependent upon information technology, with computer and communication technology being essential and vital components of Government facilities, power plant systems, medical infrastructures, and financial centers to name a few. Finding effective ways to protect information systems, networks, and sensitive data within the critical information infrastructure is challenging even with the most advanced technology and trained professionals. Enterprise-wide information assurance, security and compliance is not an option - it is mission critical. Consequently the requirements and needs for skilled information security professionals as well as compliance managers are growing significantly.With ever increasing reliance on technology to conduct business, organizations must effectively manage risks while constantly facing new threats to their operations. The global economic infrastructure is becoming increasingly dependent upon information technology, with computer and communication technology being essential and vital components of Government facilities, power plant systems, medical infrastructures, and financial centers to name a few. Finding effective ways to protect information systems, networks, and sensitive data within the critical information infrastructure is challenging even with the most advanced technology and trained professionals. Enterprise-wide information assurance, security and compliance is not an option - it is mission critical. Consequently the requirements and needs for skilled information security professionals as well as compliance managers are growing significantly.

6. MSIA Overview Professionally oriented degree Emphasis on industry relevant knowledge to realize IA solutions Policy, management, and technology aspects of information security and risk management Ten courses, online only Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu The Information Assurance program here at Brandeis addresses the growing need for Information Security professionals that possess a balance of analytical skills and business acumen. The program is unique in its emphasis on the policy, management, and technology aspects of information security and risk management. Our master�s program consists of ten courses, all of which are available exclusively through distance learning. The Information Assurance program here at Brandeis addresses the growing need for Information Security professionals that possess a balance of analytical skills and business acumen. The program is unique in its emphasis on the policy, management, and technology aspects of information security and risk management. Our master�s program consists of ten courses, all of which are available exclusively through distance learning.

7. MSIA Advantages: Skills Graduates from the MSIA Program will be able to: Assess information security risks and the technical, organizational, and human factors associated with these risks. Evaluate IT tools to protect against threats facing organizations. Assess the impact of security policies on complex systems and organizational objectives while considering regulatory requirements and compliance. Oversee the Information Assurance lifecycle including planning, acquisition, development, and evolution of secure infrastructures. Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu Our IA program equips graduates with the skills needed to develop security solutions for organizations, including the ability: To assess information security risks, Evaluate tools to protect against threats, Assess the impact of security policies while considering regulatory requirements and compliance, and To oversee the Information Assurance lifecycle.Our IA program equips graduates with the skills needed to develop security solutions for organizations, including the ability: To assess information security risks, Evaluate tools to protect against threats, Assess the impact of security policies while considering regulatory requirements and compliance, and To oversee the Information Assurance lifecycle.

8. MSIA Advantages: Curriculum and the EBK Curriculum covers the essential body of knowledge (EBK) for IT Security Published by the United States Computer Emergency Readiness Team (US-CERT) in partnership with the Department of Homeland Security in October, 2007 Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu Our curriculum has been designed to cover the essential body of knowledge for IT Security professionals published by the United States Computer Emergency Readiness Team (US-CERT) in partnership with the Department of Homeland Security. This publication provides a national baseline representing the essential knowledge and skills that IT security practitioners need to perform specific roles and responsibilities. Our curriculum has been designed to cover the essential body of knowledge for IT Security professionals published by the United States Computer Emergency Readiness Team (US-CERT) in partnership with the Department of Homeland Security. This publication provides a national baseline representing the essential knowledge and skills that IT security practitioners need to perform specific roles and responsibilities.

9. MSIA Advantages: Quality Courses Developed by expert professionals in the field Monitored by oversight body of industry professionals Evolve with the industry as new challenges emerge Adhere to comprehensive standards for distance learning Instructors Expert professionals in the field Trained in distance learning instructional methods Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu Our courses are developed and taught by expert professionals currently working in the field. Additionally the program is monitored by an oversight body of industry professionals who provide recommendations to keep the program and its courses current and relevant. All of our courses adhere to comprehensive standards for distance learning, and our instructors are all trained in distance learning instructional methods. Our courses are developed and taught by expert professionals currently working in the field. Additionally the program is monitored by an oversight body of industry professionals who provide recommendations to keep the program and its courses current and relevant. All of our courses adhere to comprehensive standards for distance learning, and our instructors are all trained in distance learning instructional methods.

10. MSIA Advantages: Flexibility Part-time Open course enrollment No GRE Apply for Admission any time before your 4th course Three 10-week terms: fall, spring, summer Distance learning courses Participate from anywhere around the world Asynchronous; no required meeting days/times Flexible curricula Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu The IA program, like all of our graduate programs at GPS, has inherent flexibility. Students take courses part-time, on an open enrollment basis. There are no GRE or other standardized tests required for admission. Rather, students may enroll in any of our courses as long as they have the required prerequisite skills. Applying for admission to the graduate program can be done anytime up until the 4th course is taken. For more information on our admissions process, refer to the Apply for Admissions pages of our web site. Our ten-week courses run in three semesters beginning in the fall, spring, and summer. All of our courses are offered through distance learning. This allows students to participate in our courses from anywhere around the world and at any time. While we have a standard weekly pace in our online courses, they are asynchronous, not requiring any set meeting days or times. For an orientation to our distance learning standards and approaches, you can refer to the distance learning area of our web site. Finally, the curricula itself is flexible, with many options for relevant electives that can be used to fulfill the degree requirements.The IA program, like all of our graduate programs at GPS, has inherent flexibility. Students take courses part-time, on an open enrollment basis. There are no GRE or other standardized tests required for admission. Rather, students may enroll in any of our courses as long as they have the required prerequisite skills. Applying for admission to the graduate program can be done anytime up until the 4th course is taken. For more information on our admissions process, refer to the Apply for Admissions pages of our web site. Our ten-week courses run in three semesters beginning in the fall, spring, and summer. All of our courses are offered through distance learning. This allows students to participate in our courses from anywhere around the world and at any time. While we have a standard weekly pace in our online courses, they are asynchronous, not requiring any set meeting days or times. For an orientation to our distance learning standards and approaches, you can refer to the distance learning area of our web site. Finally, the curricula itself is flexible, with many options for relevant electives that can be used to fulfill the degree requirements.

11. MSIA Required Courses Four Required Courses Foundations of Information Assurance IT Security and Compliance Applied Cryptography and Access Control Network Security Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu There are four courses required for both the Masters degree and the graduate certificate. The Foundations of Information Assurance course examines communications and IT infrastructures, their vulnerabilities, as well as the size and complexity of security threats faced by organizations. The IT Security and Compliance course explores various technologies in emerging areas of information assurance such as computer and network security, digital forensics, cryptography, and biometrics. Applied Cryptography and Access Control explores different approaches to applying cryptography and access control in software applications. Network Security explores the regulatory and business issues involved in supporting networks and web based services. There are four courses required for both the Masters degree and the graduate certificate. The Foundations of Information Assurance course examines communications and IT infrastructures, their vulnerabilities, as well as the size and complexity of security threats faced by organizations. The IT Security and Compliance course explores various technologies in emerging areas of information assurance such as computer and network security, digital forensics, cryptography, and biometrics. Applied Cryptography and Access Control explores different approaches to applying cryptography and access control in software applications. Network Security explores the regulatory and business issues involved in supporting networks and web based services.

12. MSIA Electives Four Elective Courses from among: Information Technology Forensics and Investigations Securing Applications, Web Services and SOA Principles of Incident Response and Disaster Recovery Legal & Ethical Practices in IT Security Security Testing and Auditing Computer Networks & Data Communications Secure Software Practices Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu In addition to the four required courses, there are 6 electives for the masters degree, 4 of which must come from the list shown here. For the graduate certificate, one elective must be chosen from the first 4 courses on this list.In addition to the four required courses, there are 6 electives for the masters degree, 4 of which must come from the list shown here. For the graduate certificate, one elective must be chosen from the first 4 courses on this list.

13. MSIA Electives Two Elective Courses from among those offered within GPS; for example Strategic IT Management: Organizational Strategy Strategic IT Management: Operational Strategy Risk Management TCP/IP Leadership, Team-Building, and Decision Making Linux Administration Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu The remaining 2 electives for the masters degree may be chosen from among any of those offered within GPS. The Programs and Courses area of our web site can provide a complete listing. A sample of electives available is shown here.The remaining 2 electives for the masters degree may be chosen from among any of those offered within GPS. The Programs and Courses area of our web site can provide a complete listing. A sample of electives available is shown here.

14. MSIA Careers Governmental Agencies National Security Agencies Military Organizations U.S. Department of Homeland Security Private industries Financial services Medical institutions Universities IA Professionals Chief Information Officer Digital forensics Information Security Officer IT security compliance IT security engineers IT systems operations & maintenance Privacy professionals Physical security professional Procurement professional Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu Professionals with a masters degree in information assurance will find that their skills are needed within a number of governmental agencies and private industries around the world. There are a growing number of related career options in the field, including roles such as those listed here.Professionals with a masters degree in information assurance will find that their skills are needed within a number of governmental agencies and private industries around the world. There are a growing number of related career options in the field, including roles such as those listed here.

15. More Information Contact the GPS office 781-736-8787 Contact us gps@brandeis.edu gps-ias@brandeis.edu Explore our web site www.brandeis.edu/gps Brandeis University, Rabb School, Division of Graduate Professional Studies 781.736.8787 gps@brandeis.edu Thank you for listening to this presentation about our graduate program in Information Assurance. For more information, contact the GPS office by phone or email, and continue exploring our web site. We welcome your questions and comments, and we look forward to hearing from you!Thank you for listening to this presentation about our graduate program in Information Assurance. For more information, contact the GPS office by phone or email, and continue exploring our web site. We welcome your questions and comments, and we look forward to hearing from you!