CS4652 Applied Information Systems Security Engineering

This course focuses on the key concepts and practices of information systems security engineering from a system life cycle perspective. Core topics include security architecture and design analysis, system implementation assessment, requirements/implementation traceability correspondence, security test and evaluation strategy, certification and accreditation (C&A) requirements analysis, and risk management. The Systems Thinking approach is introduced for assessing system security behaviors based on dependencies, interactions and emergent properties of its components in the context of functionality, scalability, interoperability and maintainability. Case studies and laboratory projects will demonstrate security engineering practices through the life cycle of a secure system.



Lecture Hours


Lab Hours