SECURE OPERATIONS

SHE Level 5
SCQF Credit Points 15.00
ECTS Credit Points 7.50
Module Code MMI125236
Module Leader Kenneth Ovens
School School of Computing, Engineering and Built Environment
Subject Cyber Security and Networks
Trimesters
  • A (September start)
  • B (January start)

Pre-Requisite Knowledge

Programme Entry Requirements

Summary of Content

This module provides students with the knowledge and skills needed to evaluate the complex threat environment facing today's organisations. The module will enable students to perform the functions needed to secure networks and services in a security operations centre environment.

Syllabus

Cybersecurity and the Security Operations Centre The Threat Environment Windows (Operating System, Overview, Administration) Linux Operating System (Using Linux, Administration, Clients) Network Protocols and Services Network Protocols Ethernet and Internet Protocol (IP) Connectivity Verification Address Resolution Protocol The Transport Layer and Network Services (Network Services, Network Infrastructure, Network Communication Devices, Network Security Infrastructure, Network Representations) Principles of Network Security, Attackers and Their Tools, Common Threats and Attacks, Network Attacks: A Deeper Look. Observing Network Operation Attacking the Foundation Attacking What We Do Protecting the Network Understanding Defense Access Control Network Firewalls and Intrusion Prevention Content Filtering Threat Intelligence Cryptography and the Public Key Infrastructure Endpoint Security and Analysis, Protection, Vulnerability Assessment. Security Monitoring Incident Response and Handling (Incident Response Models, CSIRTs and NIST 800-61r2, Case-Based Practice)

Learning Outcomes

On successful completion of this module a student should be able to:1. Set up virtual machines to create a safe environment for implementing and analyzing cybersecurity threat events.2. Explain the role of the Cybersecurity Operations Analyst in the enterprise.3. Explain features and characteristics of various operating systems in relation to supporting cybersecurity analyses.4. Analyze the operation of network protocols and services and how they relate to the to the network infrastructure5. Apply various methods to prevent malicious access to computer networks, hosts, and data and utilize monitoring tools to evaluate attacks against network protocols and services.6. Analyze network intrusion data to identify compromised hosts and vulnerabilities and apply incident response models to manage network security incidents.

Teaching / Learning Strategy

Work Based Education aims to maximise the direct and digitally mediated contact time with students by practicing teaching and learning strategies that use authentic work based scenarios and encourage action learning, enquiry based learning, problem based learning and peer learning. All these approaches aim to directly involve the students in the process of learning and to encourage sharing of learning between students. The module team will determine the level and accuracy of knowledge acquisition at key points in the delivery, inputting when necessary either directly or with the support of external experts who will add to the authenticity, the credibility and application of the education and learning in the workplace. The course material is introduced through lectures in the form of online presentations, which will cover the principles of the subject, will illustrate the relevance of it to the real-world and introduce a range of professional processes and practices. Students will engage with practical assignments and online tutorial material which may include instruction and peer-created content, and there will be seminars on campus which will allow students to discuss key concepts and issues with peers and with instructors. Students will be expected to undertake a significant level of independent study within the workplace, including practical activities, and links will be provided to appropriate external material such as podcasts, MOOCs, videos and literature to supplement the module content. Students will be encouraged to reflect upon the theoretical learning within the workplace and the application of newly learned concepts to the work environment, and this will form part of the module assessment. Students will receive feedback on their performance through the module through undertaking the practical assignments and tutorial exercises and participating in the seminars.

Indicative Reading

Santos, O., Muniz, J., De Crescenzo, S., CCNA Cyber Ops SECFND #210-250 Official Cert Guide, Cisco Press, 2017 Santos, O., Muniz, J., CCNA Cyber Ops SECOPS #210-255 Official Cert Guide, Cisco Press, 2017 Stevens, R., W., Fall, K., R., TCP/IP Illustrated, Volume 1: The Protocols: Protocols v. 1, Addison Wesley, 2011 Muniz, J., McIntyre, G., Muniz, N., A., Mcintyre, Alfardan, Security Operations Center: Building, Operating and Maintaining Your SOC, Cisco Press, 2015

Transferrable Skills

Traditional Academic Skills - specialist knowledge, ability to apply knowledge, logical thinking, critical analysis, problem-solving, written and spoken communication, ability to use numerical data, and research skills Practice: Applied knowledge, skills and understanding: ability to recognise any risks or safety aspects that may be involved in the operation of computing and information systems within a given context. Demonstrate knowledge and understanding of the commercial and economic context of the design, development, use and maintenance of digital systems. Personal Development Skills - self-confidence, self-discipline, self-reliance, awareness of strengths and weaknesses, creativity, independence, knowledge of international affairs, desire to go on learning, ability to reflect, reliability, integrity, honesty and regard for others Enterprise Or Business Skills - ability to prioritise tasks, time management, interpersonal skills.

Module Structure

Activity Total Hours
Independent Learning (FT) 122.00
Seminars (FT) 24.00
Assessment (FT) 4.00

Assessment Methods

Component Duration Weighting Threshold Description
Exam (School) 1.00 50.00 45% Class Test
Coursework 1 n/a 50.00 45% Practical Lab Assessment