| Language of instruction: |
English |
| Type of course: |
Non-Departmental Elective |
| Course Level: |
Bachelor’s Degree (First Cycle)
|
| Mode of Delivery: |
Face to face
|
| Course Coordinator : |
MEHMET ŞÜKRÜ KURAN |
| Course Lecturer(s): |
Dr. Öğr. Üyesi CEMAL OKAN ŞAKAR
|
| Course Objectives: |
As our lives increasingly depend on digital services, the need to protect our information from being maliciously disrupted or misused is really important. Threats to information security are global, persistent, and increasingly sophisticated. As the number of mobile users, digital applications and data networks increase, so do the opportunities for exploitation. Effective information security at the enterprise level requires participation, planning, and practice. It is an ongoing effort that requires management and staff to work together. The Cybersecurity and Information Systems Security Course will provide learners with principles of data and technology that frame and define cybersecurity along with the knowledge and skills to design a secure network infrastructure. Learners will gain insight into the importance of cybersecurity and the integral role of cybersecurity professionals. Topics include assembling the design team, modeling threats, and analyzing security risks in order to meet business requirements for securing computers in a networked environment. The course encourages decision-making skills through real-life scenarios that the target audience may encounter. You are given the task of collecting the information and sorting through the details to resolve the given security requirement. These topics also include plans and policies, enterprise roles, security metrics, risk management, standards and regulations, physical security, and business continuity.
|
| Week |
Subject |
Related Preparation |
| 1) |
"The Security Environment
• Threats, vulnerabilities, and consequences
• Advanced persistent threats
• The state of security today
• Why security matters
Principles of Cybersecurity
• The interrelated components of the computing environment
"
|
|
| 2) |
"Principles of Cybersecurity (cont.)
• Cybersecurity models (the CIA triad, the star model, the Parkerian hexad)
• Computer security, information security, and information assurance
Cybersecurity Management Concepts & Access Control
• Security governance
• Management models, roles, and functions
"
|
|
| 3) |
"Enterprise Roles and Structures & Security Operations and Administration
• Information security roles and positions
• Alternative enterprise structures and interfaces
"
|
|
| 4) |
"Strategy and Strategic Planning
• Strategy
• Risk Identification, Monitoring and Analysis
• Strategic planning and security strategy
• The information security lifecycle
• Architecting the enterprise
"
|
|
| 5) |
Security Plans and Policies
• Levels of planning
• Incident Response and Recovery
• Planning misalignment
• The System Security Plan (SSP)
• Policy development and implementation
Laws and Regulatory Requirements
|
|
| 6) |
Security Standards and Controls
• Security standards and controls
Certification and accreditation (C&A)
|
|
| 7) |
Risk Management
• Principles of risk
• Types of risk
• Risk strategies
The Risk Management Framework (RMF)
|
|
| 8) |
Security Metrics and Key Performance Indicators (KPIs)
• The challenge of security metrics
• What makes a good metric?
• Approaches to security metrics
Metrics and FISMA
|
|
| 9) |
Physical Security and Environmental Events
• Physical and environmental threats
• Physical and environmental controls
|
|
| 10) |
Contingency Planning
• Developing a contingency plan
• Understanding the different types of contingency plan
Responding to events
|
|
| 11) |
Security Education, Training, and Awareness
• Human factors in security
• Developing and implementing a security training plan
Cross-domain training (IT and other security domains)
|
|
| 12) |
"Managing information security
• The purpose of certification and accreditation
• Trends in certification and accreditation
• Cryptography
"
|
|
| 13) |
"Incident Response
• Incident categories
• Incident response
Incident recovery
The future of cybersecurity
• Key future uncertainties
• Possible future scenarios
How to apply what you’ve learned"
|
|
| 14) |
General Review
|
|
| |
Program Outcomes |
Level of Contribution |
| 1) |
To be able to apply theoretical concepts related to mass communication, consumer behavior, psychology, persuasion,sociology, marketing, and other related fields to understand how advertising and brand communication works in a free-market economy.
|
2 |
| 2) |
To be able to critically discuss and interpret theories, concepts, methods, tools and ideas in the field of advertising.
|
2 |
| 3) |
To be able to research, create, design, write, and present an advertising campaign and brand strategies of their own creation and compete for an account as they would at an advertising agency.
|
2 |
| 4) |
To be able to analyze primary and secondary research data for a variety of products and services.
|
2 |
| 5) |
To be able to develop an understanding of the history of advertising as it relates to the emergence of mass media outlets and the importance of advertising in the marketplace.
|
2 |
| 6) |
To be able to follow developments, techniques, methods, as well as research in advertising field; and to be able to communicate with international colleagues in a foreign language. (“European Language Portfolio Global Scale”, Level B1)
|
2 |
| 7) |
To be able to take responsibility in an individual capacity or as a team in generating solutions to unexpected problems that arise during implementation process in the Advertising field.
|
3 |
| 8) |
To be able to understand how advertising works in a global economy, taking into account cultural, societal, political, and economic differences that exist across countries and cultures.
|
2 |
| 9) |
To be able to approach the dynamics of the field with an integrated perspective, with creative and critical thinking, develop original and creative strategies.
|
2 |
| 10) |
To be able to to create strategic advertisements for print, broadcast, online and other media, as well as how to integrate a campaign idea across several media categories in a culturally diverse marketplace.
|
2 |
| 11) |
To be able to use computer software required by the discipline and to possess advanced-level computing and IT skills. (“European Computer Driving Licence”, Advanced Level)
|
2 |
| 12) |
To be able to identify and meet the demands of learning requirements.
|
2 |
| 13) |
To be able to develop an understanding and appreciation of the core ethical principles of the advertising profession.
|
2 |
BAHÇEŞEHİR UNIVERSITY BİLGİ PAKETİ / DERS KATALOĞU
