INFO 287-14
Seminar in Information Science
Topic: Cybersecurity
Spring 2022 Syllabus

Dr. Tonia San Nicolas-Rocca
E-mail
Other contact information: Skype Name: tonia.san.nicolas
Office location: Email, IM
Office Hours: Email, Collaborate and IM 


Syllabus Links
Textbooks
CLOs
Competencies
Prerequisites
Resources
Canvas Login and Tutorials
iSchool eBookstore
 

Canvas Information: Courses will be available beginning January 26, 2022, at 6 AM PT unless you are taking an intensive or a one-unit or two-unit class that starts on a different day. In that case, the class will open on the first day that the class meets.

You will be enrolled in the Canvas site automatically.

Information Systems Resources

Online Resources

  • Canvas Information: This course will use Canvas to manage course documents, assignments, and grades. This course will be available on the first day of the semester. Students will be enrolled into the site automatically.
  • Zoom Information: This course will use Zoom for online lectures and presentations. This course will be available on the first day of the semester. Students will be enrolled into the site automatically.
  • Panopto: This course will use Panopto for online lectures and course information.  Information will be provided to students to access presentations.   
  • TestOut Lab: The labs assigned in this course will be accessed using TestOut. Students will be provided with login information through Canvas.
  • Course name: TestOut Security Pro 
  • Student Login: www.testout.com

Required Lab
Students will be required to use a virtual lab to complete lab assignments.  Students must purchase an online code to access the labs. Professor will provide additional lab information to students.  

Software

  • Word Processor: Microsoft Word, Open Office Writer or Apple Pages
  • Browser: Chrome, Safari, Edge, Mozilla Firefox or Internet Explorer

Course Description

This course provides an overview of the challenges and strategies relating to the confidentiality, integrity, and availability of information and information resources. Topics include information systems security (ISS) fundamentals, ISS within the seven domains of a typical information technology (IT) infrastructure, risks, threats, and vulnerabilities found in a typical IT infrastructure, security countermeasures for combating risks, threats, and vulnerabilities commonly found in an IT infrastructure, (ISC)2 Systems Security Certified Practitioner (SSCP®) Common Body of Knowledge – SSCP® domains, and Compliance laws and standards that affect organizations today.

Course Requirements

Technology Requirements

Assignments
Formal Assignments for this course are as follows:

Assignment Learning Objective Portion of Course Grade

Lab

  • Lab 1-3, due Feb. 13
  • Lab 4-6, due Mar 13
  • Lab 7-9, due Mar. 27
  • Lab 10-12, due Apr. 17
  • Lab 13-15, due May 1
4, 6 40%

Projects

  • Personal Risk Management Project 
    • Part 1 (due, Feb. 13)
    • Final Report (due, Feb. 27)
  • Organizational Risk Management Project 
    • Selection (due, Feb. 20)
    • Part 1 (due, Apr. 10)
    • Part Final Report (due, May 8)
  • Cybersecurity Research Project
    • Topic Selection (due, Feb. 20)
    • Status Report (due, Mar. 20)
    • Research Presentation (due, May 15)
    • Report Report (due, May 16)
1, 2, 3, 4, 5, 6 50%

Class Participation (Discussions)

  • Introduction (due, Jan. 30)
  • Data Breach Discussion 
    • Post (due, Mar. 6)
    • Response (due, Mar. 13)
  • Verizon's 2020 Data Breach Investigations Report
    • Post (due, Apr. 24)
    • Response (due, May 1)
1, 2, 3, 4, 5 10%
Total   100%
  • Labs (CLO# 4, 6)
    Students are to complete lab assignments. Lab assignments provide students a real-life look at the use of various tools and systems that are used to mitigate network attacks. Students must have access to TestOut to complete lab assignments.
     
  • Risk Management Projects (CLO# 12, 3, 4, 5, 6)
    Students will complete two risk management projects.  The first will require students to conduct a risk, threat, and vulnerability analysis of their residence.  The second will require students to conduct a risk, threat, and vulnerability analysis of an organization within an industry of their choice.  Students must be able to physically and remotely access their chosen organization's resources (limitations are expected). Students will be required to post the name of the organization of their choice on the discussion board. No more than one student/group can analyze any one particular organization and industry. Therefore, students/groups should select and post their organization to the discussion board as quickly as possible. Students/groups will be required to submit their findings in a written report to the instructor. Students/groups will also share their findings on the discussion board.
     
  • Research Report and Presentation (CLO# 12, 3, 4, 5, 6)
    Each student/group will conduct research and present their findings on a current cybersecurity topic area. Students/groups must propose their research project to the instructor by the end of the second week of the semester. No more than one student/group can research any one particular topic area. Therefore, students/groups should select and propose their research topic to the instructor as quickly as possible
     
  • Class Participation (CLO# 1, 2, 3, 4, 5)
    Students will participate in the discussion board by providing ideas and/or opinions relating to research topics, risk management projects, current events, and assigned readings and lectures.  Discussion board participation cannot be made-up once the discussion has been completed. 

Course Workload Expectations

Success in this course is based on the expectation that students will spend, for each unit of credit, a minimum of forty-five hours over the length of the course (normally 3 hours per unit per week with 1 of the hours used for lecture) for instruction or preparation/studying or course related activities including but not limited to internships, labs, clinical practica. Other course structures will have equivalent workload expectations as described in the syllabus.

Instructional time may include but is not limited to:
Working on posted modules or lessons prepared by the instructor; discussion forum interactions with the instructor and/or other students; making presentations and getting feedback from the instructor; attending office hours or other synchronous sessions with the instructor.

Student time outside of class:
In any seven-day period, a student is expected to be academically engaged through submitting an academic assignment; taking an exam or an interactive tutorial, or computer-assisted instruction; building websites, blogs, databases, social media presentations; attending a study group;contributing to an academic online discussion; writing papers; reading articles; conducting research; engaging in small group work.

Course Prerequisites

INFO 287 has no prequisite requirements.

Course Learning Outcomes

Upon successful completion of the course, students will be able to:

  1. Recognize of the need for cybersecurity or information systems security.
  2. Understand the confidentiality, integrity, and availability of information resources.
  3. Recognize information security threats and vulnerabilities.
  4. Understand information systems security controls.
  5. Analyze the impact of cybersecurity on individuals, organizations, and society, including ethical, legal, security and global policy issues.
  6. Use current techniques, skills, and tools necessary to protect and safeguard information resources.

Core Competencies (Program Learning Outcomes)

INFO 287 supports the following core competencies:

  1. B Describe and compare organizational settings in which information professionals practice.
  2. H Demonstrate proficiency in identifying, using, and evaluating current and emerging information and communication technologies.
  3. M Demonstrate professional leadership and communication skills.

Textbooks

Required Textbooks:

  • Ciampa, M. (2022). CompTIA security+ guide to network security fundamentals (7th ed.). Cengage. Available through Amazon: 0357424379arrow gif indicating link outside sjsu domain

Grading Scale

The standard SJSU School of Information Grading Scale is utilized for all iSchool courses:

97 to 100 A
94 to 96 A minus
91 to 93 B plus
88 to 90 B
85 to 87 B minus
82 to 84 C plus
79 to 81 C
76 to 78 C minus
73 to 75 D plus
70 to 72 D
67 to 69 D minus
Below 67 F

 

In order to provide consistent guidelines for assessment for graduate level work in the School, these terms are applied to letter grades:

  • C represents Adequate work; a grade of "C" counts for credit for the course;
  • B represents Good work; a grade of "B" clearly meets the standards for graduate level work or undergraduate (for BS-ISDA);
    For core courses in the MLIS program (not MARA, Informatics, BS-ISDA) — INFO 200, INFO 202, INFO 204 — the iSchool requires that students earn a B in the course. If the grade is less than B (B- or lower) after the first attempt you will be placed on administrative probation. You must repeat the class if you wish to stay in the program. If - on the second attempt - you do not pass the class with a grade of B or better (not B- but B) you will be disqualified.
  • A represents Exceptional work; a grade of "A" will be assigned for outstanding work only.

Graduate Students are advised that it is their responsibility to maintain a 3.0 Grade Point Average (GPA). Undergraduates must maintain a 2.0 Grade Point Average (GPA).

University Policies

Per University Policy S16-9, university-wide policy information relevant to all courses, such as academic integrity, accommodations, etc. will be available on Office of Graduate and Undergraduate Programs' Syllabus Information web page at: https://www.sjsu.edu/curriculum/courses/syllabus-info.php. Make sure to visit this page, review and be familiar with these university policies and resources.

In order to request an accommodation in a class please contact the Accessible Education Center and register via the MyAEC portal.

icon showing link leads to the PDF file viewer known as Acrobat Reader Download Adobe Acrobat Reader to access PDF files.

More accessibility resources.