BAHÇEŞEHİR UNIVERSITY BİLGİ PAKETİ / DERS KATALOĞU
| CYBER SECURITY (ENGLISH, NONTHESIS) | |||||
| Master | TR-NQF-HE: Level 7 | QF-EHEA: Second Cycle | EQF-LLL: Level 7 | ||
Course Introduction and Application Information
| Course Code | Course Name | Semester | Theoretical | Practical | Credit | ECTS |
| CYS5123 | Web Application Security: Hacking and Defence | Fall | 3 | 0 | 3 | 12 |
| This catalog is for information purposes. Course status is determined by the relevant department at the beginning of semester. |
Basic information
| Language of instruction: | English |
| Type of course: | Departmental Elective |
| Course Level: | |
| Mode of Delivery: | Face to face |
| Course Coordinator : | Dr. Öğr. Üyesi AHMET NACİ ÜNAL |
| Recommended Optional Program Components: | None |
| Course Objectives: | Teaching organizational management methods of information security. Discussing data access models. Discussing information security policies. |
Learning Outcomes
|
The students who have succeeded in this course; Information management. Data access models. Information management legislation. Auditing and certification of information management processes will be though. |
Course Content
| Introduction of data security principles. Standards defining data security levels. Standards regarding user security levels. Classification of data stored in the information systems. Classification of user access levels from security perspective. Access monitoring, auditing and reporting with respect to defined user and data security levels. Information management strategies and policies. Introducing national and international information management legislation. |
Weekly Detailed Course Contents
| Week | Subject | Related Preparation |
| 1) | Course outline | Lecturer notes |
| 2) | Information security and access | Lecturer notes |
| 3) | Confidentiality levels and access levels | Lecturer notes |
| 4) | Access models | Lecturer notes |
| 5) | Confidentiality classification methods | Lecturer notes |
| 6) | Auditing access | Lecturer notes |
| 7) | Undeniability of access | Lecturer notes |
| 8) | Information management concept | Lecturer notes |
| 9) | Information management policies | Lecturer notes |
| 10) | Information management standards | Lecturer notes |
| 11) | Certification of information management | Lecturer notes |
| 12) | National and international information management principles | Lecturer notes |
| 13) | Daily topics | Lecturer notes |
| 14) | Daily topics | Lecturer notes |
Sources
| Course Notes / Textbooks: | Management of Information Security, 4th Ed., Michael E. Whitman, Herbert J. Mattord, 2013, Cengage Learning. Fundamentals Of Information Systems Security, 2nd Ed., David Kim, Michael G. Solomon, 2013, Jones & Bartlett Learning. |
| References: | Ders notları |
Evaluation System
| Semester Requirements | Number of Activities | Level of Contribution |
| Attendance | 10 | % 0 |
| Homework Assignments | 4 | % 10 |
| Presentation | 1 | % 10 |
| Midterms | 1 | % 20 |
| Final | 1 | % 60 |
| Total | % 100 | |
| PERCENTAGE OF SEMESTER WORK | % 40 | |
| PERCENTAGE OF FINAL WORK | % 60 | |
| Total | % 100 | |
ECTS / Workload Table
| Activities | Number of Activities | Duration (Hours) | Workload |
| Course Hours | 14 | 3 | 42 |
| Study Hours Out of Class | 14 | 12 | 168 |
| Presentations / Seminar | 2 | 3 | 6 |
| Homework Assignments | 4 | 8 | 32 |
| Midterms | 1 | 20 | 20 |
| Final | 1 | 20 | 20 |
| Total Workload | 288 | ||
Contribution of Learning Outcomes to Programme Outcomes
| No Effect | 1 Lowest | 2 Low | 3 Average | 4 High | 5 Highest |
| Program Outcomes | Level of Contribution | |
| 1) | Being able to develop and deepen their knowledge at the level of expertise in the same or a different field, based on undergraduate level qualifications. | 4 |
| 1) | Being able to independently carry out a work that requires expertise in the field. | 4 |
| 1) | To be able to supervise and teach these values by observing social, scientific, cultural and ethical values in the stages of collecting, interpreting, applying and announcing the data related to the field. | 4 |
| 1) | To be able to critically evaluate the knowledge and skills acquired in the field of expertise and to direct their learning. | 4 |
| 1) | To be able to interpret and create new knowledge by integrating the knowledge gained in the field with the knowledge from different disciplines, | 4 |
| 1) | To be able to systematically transfer current developments in the field and their own studies to groups in and outside the field, in written, verbal and visual forms, by supporting them with quantitative and qualitative data. | 4 |
| 2) | To be able to comprehend the interdisciplinary interaction with which the field is related. | 5 |
| 2) | To be able to use the theoretical and applied knowledge at the level of expertise acquired in the field. | 5 |
| 2) | To be able to critically examine social relations and the norms that guide these relations, to develop them and take action to change them when necessary. | 4 |
| 2) | To be able to develop strategy, policy and implementation plans in the fields related to the field and to evaluate the obtained results within the framework of quality processes. | 5 |
| 2) | To be able to develop new strategic approaches for the solution of complex and unpredictable problems encountered in applications related to the field and to produce solutions by taking responsibility. | 5 |
| 3) | To be able to use the knowledge, problem solving and/or application skills they have internalized in their field in interdisciplinary studies. | 4 |
| 3) | Being able to lead in environments that require the resolution of problems related to the field. | 5 |
| 3) | To be able to solve the problems encountered in the field by using research methods. | 5 |