CYBERSECURITY (CYBR)

GARY CARTER, Chair
RICHARD FORNO, Ph.D., Graduate Program Director

Degrees Offered

Master in Professional Studies (MPS): Cybersecurity
Professional Studies Certificate: Cybersecurity Strategy and Policy

Program Description

M.P.S.: Cybersecurity
The MPS is designed to prepare computer science, information systems, and other technical professionals to fill management and leadership roles in cybersecurity. This interdisciplinary degree program gives security professionals the range of knowledge and skills needed to be successful as managers in the emerging field of cybersecurity. Coursework includes a blend of management/legal/business courses with more technically focused courses.

Graduate Certificate in Professional Studies: Cybersecurity Strategy and Policy
This four-course graduate certificate can be completed in a year. Because these courses are not technical, this program is available to students with a variety of undergraduate backgrounds. Students may choose to take this certificate by itself, or they may take this certificate and then later complete the master�s. If a student is accepted into the M.P.S.: Cybersecurity, all four certificate courses count toward that degree.

Degree Requirements

M.P.S.: Cybersecurity (30 Credits)

The ten-course master�s degree combines courses in cybersecurity strategy, policy, and management with more technical, hands-on cybersecurity courses that allows students to develop a formal educational program that best meets their individual career development needs.

Required Core Courses(18 credits)
CYBR 620: Introduction to Cybersecurity
CYBR 623: Cybersecurity Law & Policy
CYBR 624: Cybersecurity Project
ENMG 650: Project Management
ENMG 652: Management, Leadership, and Communication
ENMG 658: Financial Management OR ENMG 672: Decision and Risk Analysis

Elective Cybersecurity Courses (9 credits) Choose three
CMSC 687: Introduction to Network Security
CMSC 691: Computer Forensics and Intrusions
CMPE 685: Principles of Communications Networks
CYBR 621: Cyber Warfare
CYBR 622: Global Cyber Capabilities and Trends
Other graduate course approved by Cybersecurity Graduate Program Director

Management Elective (3 credits) Choose one
ENMG 654: Leading Teams & Organizations
ENMG 656: Engineering Law and Ethics
ENMG 659: Strategic Management
ENMG 661: Leading Virtual Global Teams
ENMG 662: Financial Decision Making for Engineering
Other graduate course approved by Cybersecurity Graduate Program Director

Graduate Certificate in Professional Studies: Cybersecurity Strategy and Policy (12 credits)

This four-course graduate certificate can be completed in a year. Because these courses are not technical, this program is available to students with a variety of undergraduate backgrounds. Students may choose to take this certificate by itself, or they may take this certificate and then later complete the master�s. If a student is accepted into the M.P.S.: Cybersecurity, all four certificate courses count toward that degree.

Four Required Courses (12 credits)
CYBR 620: Introduction to Cybersecurity
CYBR 621: Cyber Warfare
CYBR 622: Global Cyber Capabilities and Trends
CYBR 623: Cybersecurity Law & Policy

Program Admission Requirements

MPS Program:

A bachelor�s degree in Computer Science, Computer Engineering, Electrical Engineering, Math, or Information Systems. A bachelor's degree in another field may be acceptable given relevant work experience.

  • GRE scores are not required for admission
  • Applicants should have a minimum undergraduate GPA of 3.0 on a 4.0 scale (Students with a GPA less than 3.0 may be admitted to the program provisionally.)
  • Official Transcripts
  • Goal statement outlining the student�s goals and expectations in the program
  • Recommendation letters (optional) submit to Dr. Rick Forno at richard.forno@umbc.edu.

International Student Admission Requirements:

A bachelor�s degree in Computer Science, Computer Engineering, Electrical Engineering, Mathematics or Informaiton Systems.

  • Minimum undergraduate GPA of 3.0 on 4.0 scale
  • TOEFL Scores: Minimum scores 597 (Written), 247 (computerized), 99 (iBT). Scores must be less than 2 years old.
  • iBT Score Breakdown: Writing (23), Listening (23), Reading (25), Speaking (28, 23 acceptable if have 2 years' work experience in supervisory or management position in the U.S.)
    OR
  • IELTS Score: Minimum score of 9.0 required

*If you have a three-year degree versus a four-year degree your transcript will be reviewed to determine whether you have met the necessary pre-requisites for the Master�s program. Eligibility for admission can only be determined upon receipt of a complete application.

Use the code PRST-CYBR on the application form for Master in Professional Studies.

Graduate Certificate in Professional Studies:

There are no specific constraints on the type of undergraduate degree required for this certificate. In general, student should have a firm foundation in the basic terminology of computer, network and information security along with a conceptual understanding of the technical functionality of computers, networks, and the Internet. These general requirements can usually be satisfied with one or more courses in related areas or through documented professional experience. In particular, students with a background in computer science or information systems are encouraged to apply.

  • GRE scores are not required for admission
  • Applicants should have a minimum undergraduate GPA of 3.0 on a 4.0 scale (students with a GPA less than 3.0 may be admitted to the program provisionally.)
  • Goal statement outlining the student�s goals and expectations in the program
  • Unofficial transcripts are required

Use the code PSCB on the application form, under Certificate Information for Certificate of Professional Studies.

Financial Assistance

Because this program is designed primarily for working professionals, graduate assistantships are not available. International students must provide their own support for full-time enrollment in this program. For details on international student financial requirements, see the International Education Services Web Site at www.umbc.edu/ies.

COURSE LISTING

CMPE 626: Principles of Computer Security
This course will provide an introduction to computer security with a specific focus on the computing aspects. Topics covered include: basics of computer security, including an overview of threat, attack and adversary models; social engineering; essentials of cryptography; traditional computing security models; malicious software; secure programming; operating system security in practice; trusted operating system design; public policy issues, including legal, privacy and ethical issues; network and database security overview.

CMPE 685: Principles of Communications Networks
This course provides an overview of network communications terms, concepts, architectures, protocols, and technologies. Upon completion of the course, students will be able construct, and assess the completeness of, architectures for simple LAN and WAN communications networks. Topics include wire/fiber and wireless WANs and LANs, the OSI and TCP/IP models, propagation media, analog and digital data and signals, error detection, error correction, data link layer protocols, multiple access techniques, medium access control, circuit and packet switching, X.25, TCP/IP, ATM, Ethernet, switches, routers, routing techniques, congestion control, queuing theory, quality of service (QoS) metrics, network architectures, and network security.

CMSC 644: Information Assurance
Selected recent research topics in information assurance, such as social engineering, buffer overflow, malicious code, spyware, denial of service, information warfare, computer forensics, recovery and response, enterprise security, clandestine channels and emissions security, security analysis, security models and formal techniques, best practices and national policy for information assurance. This course will minimize discussion of intrusion detection, firewalls, operating systems security and mathematical cryptology, which are emphasized in other CMSC security courses. Prerequisite: CMSC 421, CMSC 441 and CMSC 481 or consent of instructor

CMSC 652: Cryptography and Data Security
Conventional and public-key cryptography. Selected cryptosystems, including DES and RSA. Digital signatures, pseudo-random number generation, cryptographic protocols and cryptanalytic techniques. Applications of cryptography to e-commerce. Prerequisites: CMSC 441 and MATH 221 or consent of instructor.

CMSC 687: Introduction to Network Security
The objective of this course is to teach the fundamental concepts, architectures and protocols related to network security. Topics covered include: overview of network security; basics of cryptography; threat models; authentication and authorization mechanisms and standards; public key infrastructure; electronic mail security; network layer security; transport layer and web security; packet filtering, firewalls, intrusion detection, and virtual private networks; recent topics in network security. Prerequisites: CMSC 341 and CMSC 481 or consent of instructor.

CMSC 691: Computer Forensics and Intrusions
This course will discuss computer forensics and its legal framework within a law enforcement context. It then examines specific aspects of computer evidence and forensics including file system analysis, network-based artifact examination, password recovery, mobile device forensics, and proper evidence handling. Assignments will test the student�s understanding of the theory behind computer forensics while lab exercises provide them the opportunity to develop practical forensic examination skills using digital evidence tools.

CYBR 620: Introduction to Cybersecurity
This course introduces students to the interdisciplinary field of cybersecurity by discussing the evolution of information security into cybersecurity, cybersecurity theory, and the relationship of cybersecurity to nations, businesses, society, and people. Students will be exposed to multiple cybersecurity technologies, processes, and procedures learn how to analyze the threats, vulnerabilities and risks present in these environments, and develop appropriate strategies to mitigate potential cybersecurity problems.

CYBR 621: Cyber Warfare
This course addresses some of the unique and emerging policy, doctrine, strategy, and operational requirements of conducting cyber warfare at the nation-state level. It provides students with a unified battlespace perspective and enhances their ability to manage and develop operational systems and concepts in a manner that results in the integrated, controlled, and effective use of cyber assets in warfare.

CYBR 622 : Global Cyber Capabilities and Trends
This course focuses on four general areas of cyber capabilities and trends in the global community: the theory and practice of cybersecurity and cyberwar; cyber capabilities of nation-states as well as non-state actors; trends in cyber-related strategies and policies; and cyber-related challenges facing the U.S. government. The course concludes with a national cybersecurity policy exercise that helps demonstrate the challenges and complexities of the dynamic and global cybersecurity environment.

CYBR 623: Cybersecurity Law and Policy
Students will be exposed to the national and international policy and legal considerations related to cybersecurity and cyberspace such as privacy, intellectual property, cybercrime, homeland security (i.e., critical infrastructure protection) and cyberwarfare, and the organizations involved in the formulation of such laws and policies. Broader technology issues also are discussed to demonstrate the interdisciplinary influences and concerns that must be addressed in developing or implementing effective national cybersecurity laws and policies.

CYBR 624: Cybersecurity Project
This is the capstone experience for graduate students in the M.P.S. Cybersecurity program. The Cybersecurity Project provides an opportunity for students to carry out an individual piece of research on a specified topic in the cybersecurity or cyber operations domain. This research should make an original contribution to the body of knowledge in the area of study or otherwise demonstrate the student�s comprehensive knowledge of cybersecurity or cyber operations. Prerequisite: Completion of cybersecurity breadth courses.

CYBR 691: Special Topics in Cybersecurity
Courses on specialized or emerging cybersecurity topics offered on a timely or as-needed basis.

ENMG 650: Project Management Fundamentals
Students learn the fundamentals of managing projects in a systematic way. These fundamentals can be applied within any industry and work environment and will serve as the foundation for more specialized project management study. Principles and techniques are further reinforced through practical case studies and team projects in which students simulate project management processes and techniques.

ENMG 652: Management, Leadership, and Communication
Students learn effective management and communication skills through case study-analysis, reading, class discussion and role-playing. The course covers topics such as effective listening, setting expectations, delegation, coaching, performance, evaluations, conflict management, negotiation with senior management and managing with integrity.

ENMG 654: Leading Teams and Organizations
Prerequisite- ENMG 652: Management, Leadership and Communication Students analyze leadership case studies across a wide range of industries and environments to identify effective leadership principles that may be applied in their own organizations. Students learn how to influence people throughout their organization, lead effective teams, create an inclusive workplace, use the Six Sigma process, implement and manage change and develop a leadership style.

ENMG 656: Engineering Law and Ethics
This course provides a comprehensive overview of important legal principles affecting engineers, engineering sciences and corporate management, with a focus on the intersection of these legal principles with business ethics. The student learns how to think through and process legal problems consistent with ethical norms, and how to analyze business risks in light of operative legal constructs, taking into consideration ethical issues, to arrive at a range of correct business decisions.

ENMG 658: Financial Management
This course is focused on financial decision making and the common financial management practices of science-based organizations. The course covers the development and analysis of financial statements/reports in science-based businesses; project budgeting, profit planning, return on investment, risk and return, strategy and options. Students analyze case studies from biotechnology and other science-based industries.

ENMG 659: Strategic Management
This course is intended to integrate the learning from the previous management courses and to focus it on the perspective and problems of the Chief Executive Officer and other organizational strategic managers. The theme of the course is that any organization improves its chances of sustained success when its managers formulate an action-oriented strategic business plan based on the strategic management process. Case studies are included to illustrate the concepts and their applications.

ENMG 672: Decision and Risk Analysis
This course provides an overview of decision and risk analysis techniques. It covers modeling uncertainty, the principles of rational decision-making, representing and solving decision problems using influence diagrams and decision trees, sensitivity analysis, Bayesian decision analysis, deductive and inductive reasoning, objective and subjective probabilities, probability distributions and regression analysis.