M.S. in Enterprise Security and Risk Management

The Masters program in Enterprise Security and Risk Management is intended to train information security management professionals; it combines a sound understanding of information security technology with methodologies and processes for asset identification, threat assessment, and risk mitigation.

Specific topics covered over the course of the program include:

• principles of cybersecurity and information assurance;
• risk fundamentals and vulnerability management;
• reliability and security of enterprise applications;
• organizational, social, legal, and ethical aspects of security;
• analysis of the dynamics between business and technical requirements, and business and technical risks;
• best practices for secure systems;
• planning, implementation, analysis, and management of information security architectures;
• resource management in enterprise computing (virtualization) and integration of web service with legacy application (connector architecture).

Program Requirements

• CS 506 Introduction to IT Security or MIS 645 Cybersecurity Principles
• CS 548 / SOC 542 Engineering of Enterprise Software Systems
• CS 578 / SOC 551 Privacy in a Networked World
• CS 594 / TM 594 Enterprise Security and Information Assurance
• MIS 646 Information Security Management
• MIS 647 Information Security and the Law
• TM 675 / MIS 648 Risk Analysis and Economics of Security
• One CS Elective
• One TM / MIS Elective
• One CS / TM / MIS Elective

  Course substitutions require the permission of the graduate advisor and are discouraged, because of the specific focus of the program.

  Graduate Advisors

  • Antonio Nicolosi
  • Paul Rohmeyer