This course focuses on the importance of protecting data and information in today’s digital world as related to strategy and policy, awareness, data classification, ownership and accountability, monitoring and reporting. The course covers network components that comprise the environment, where the data are input, processed, stored and how the data travel through the Intranet, Extranet, and/or Internet. Upon completion of the course, students learn to assess the impact of data in the digital world, considering the steps that the

Government, Corporations and the Private Sector take to protect information assets. Students gain an understanding of components that comprise network security and how each component provides protection. They become familiar with preventative and detective tools such as anti-malware, ACL, virus protection, cryptography, intrusion detection, audit logs, and logical and physical controls and perform information risk assessments.



Students must check the NYU Classes website for course assignments regularly. Coursework involves in-person (weekly) lectures, in-class discussions, case studies, assignments, quizzes and group projects.


At the conclusion of this course, students will be able to:

Apply the key principles of information security to the value of data and technologies in the digital world

Analyze different security frameworks used by Government, Corporations and the

Private Sector to protect digital asset

Design a digitally secure environment to protect business information assets

Justify how each digital security component provides protection from threats Support the decision to select and use preventive, detective and responsive security elements

Perform information security risk assessment to quantify and address high risk occurrences


All communication must be through the NYU Classes course-email or via NYU email address – personal or individual corporate email addresses should not be used; this is because NYU Classes course-mail and NYU email system supports student privacy and FERPA guidelines. Non-degree students do not have NYU email addresses. All supported email inquiries, either through NYU Classes course-email or via NYU email address, will be answered within 24 hours.

Students have the opportunity to add their pronouns, as well as the pronunciation of their names, into Albert. Students can have this information displayed to faculty in Albert, NYU Classes, and other NYU systems. Students can also opt out of having their pronouns viewed by their instructors.



Students are expected to attend all classes. Attendance will be taken in to consideration when assigning final grades. Unexcused absences may have a negative impact on your participation grade. Students who have been excessively absent may be considered to have withdrawn unofficially and may be given the final grade of “F.”

Students who miss class for medical reasons are required to notify their instructor of their absence and may be asked to produce a doctor’s documentation of treatment at the next class.

Students who plan to miss classes for religious reasons are expected to inform instructors beforehand and to be responsible for assignments given during their absence. For university policies on religious holidays please check:

Students may enter class late or leave class early only if given permission by the instructor.

Makeup assignments for excused absences: You should find out what was covered in the missed session by speaking to a fellow classmate and checking the NYU Classes course site to review all the resources provided by your instructor. Contact your instructor regarding makeup assignments that may be provided to you.

Students who join the course during add/drop are responsible for ensuring that they identify what assignments and preparatory work they have missed and complete and submit those per the syllabus.

Classroom Expectations:

As graduate students, you are expected to conduct yourselves in a professional manner and engage and collaborate with your classmates in the Zoom meeting room. Here are our guiding principles:

Dress as if you are in the Classroom.

Keep your microphone muted unless asking a question or engaging in discussion.

Check your video and audio when entering your class session.

Think background, minimize distractions around you.

Look into the camera instead of looking at the screen.

Type quietly, mute if necessary.

Don’t eat during a Zoom class session and refrain from engaging in any activity such as smoking, consuming alcohol, etc. that you would not engage in if the class was in person.

SPS classrooms are diverse and include students who range in age, culture, learning styles, and levels of professional experience. To maintain an inclusive environment that ensures all students can equally participate with and learn from each other, as well as receive feedback and instruction from faculty during group discussions in the classroom, all course-based discussions and group projects should occur in a language that is shared among all participants.


All students must complete all course assignments. You should come to each class fully prepared, having read the assigned readings and completed the assignment(s), and actively engage in class discussions.

All assignments must be uploaded to the folder on NYU classes labeled “Assignments.” Each assignment sub-folder will include the detailed assignment description and grading criteria/rubric. The number of the assignments and their due dates are on the course outline that follows. Assignment due dates are final and non-negotiable. Late assignments are not accepted without prior written permission from the faculty and cannot be granted more than once throughout the semester. Failure to submit assignments on time will result in a grade reduction of 5%.

Technology Policy:

Establishing an environment of mutual respect and exchange in the classroom requires a commitment to presence in discussions and full attention to the course materials presented in class. In the interest of ensuring that attention stays focused on your classmates and class discussions, use of laptops, Smartphones, and other electronic devices is not permitted during the session unless required for a class activity.

Classroom Participation:

Students are expected to have a basic knowledge of information technology. They should be familiar with navigating their way through the Internet, primarily to research material.

Requirements of this course consist of the following:

The student’s final grade in this course will be comprised of the following:

Description of Activities

Grading Allocation
Team Assignment One. Assignment will involve the creation of RACI table with supporting documentation regarding the organizational model positions and functions chosen. The RACI table must show and describe at least two positions with Security responsibilities.

Measurements will be found in the associated Rubric.



It is expected that each student will be prepared to participate in lively, intelligent and professional in-person discussions as scheduled by the instructor.

Assignments must be submitted when due. All assignments must be typewritten, doublespaced. Reading assignments and homework must be accomplished as indicated so that everyone will benefit from an in-depth discussion of issues.

All written assignments are to be in a professional and business standard. Late assignments will only be accepted in dire situations (illness or other emergency). Late assignments are permitted only with advance notice to, and permission from, the instructor. Missed assignments will lower the student’s grade based on the percentage of the grade allocable to it.

Students are expected to inform the instructor via email before class, whenever you are unable to attend.

Lateness may have a negative impact on a student’s final grade. If a student is running late, it is expected that the student notifies the instructor before class time.

Students are expected to attend all classes. Excused absences are granted in cases of documented serious illness, family emergency, religious observance, or civic obligation. In the case of religious observance or civic obligation, this should be reported in advance.

Unexcused absences from sessions may have a negative impact on a student’s final grade as much as 1% per class session. Students are responsible for assignments given during any absence.  A student who has three unexcused absences may earn a Fail grade. University Calendar Policy on Religious Holidays:

If you are unable to maintain the pace of the course, it is your responsibility to comply with the

PROCEDURE FOR DROPPING A COURSE. If you wish to drop your course, you MUST

notify your academic advisor. In order to not receive an F for the course, you must inform your instructor as well. Please see the NYUSPS academic policies and procedures link below for more information.

Students are expected to be active participants in the learning experience as opposed to passive receptacles for information. Respect for the opinions of others and openness to new ideas is vital for all participants. For successful completion of this course, students will master the material presented in-person, assigned in readings, communicated through online discussions and from research activities outside of class.

Plagiarism is strictly prohibited. See specific Plagiarism section for more details.


Required: Principles of Information Security, 6th Edition, Michael E. Whitman, Herbert J. Mattord, ISBN-10: 1337102067, ISBN-13: 9781337102063, © 2018

Recommended: Eleventh Hour CISSP, Second Edition: Study Guide by Eric Conrad, Seth

Misenar, and Joshua Feldman, ISBN 978-0-1241-7142-8

Team Assignment Two. Selection of controls from the list of the CIS Top 20 Controls. Your write up will require a description of selected best of breed security practices that are used for each of the chosen controls. Assignment will be assessed on how well the team applies security and risk mitigation concepts, the depth of research conducted, the thoroughness of security/risk analysis.

In-class Participation. Students are expected to read the required 6% materials and be engaged in topics discussed in class.

Twelve Individual Homework Assignments. Based on chapter      10% content comprised of multiple choice, true/false or fill in questions.  

Two Case Studies. Topics for short paper will be based on current 24% security trends and news. Answering the questions require a minimum of two to three paragraphs and include supporting references and proper research done on the topic.

Individual Final Paper. Requires you to analyze a fictious company 30% that hires you as their CISO and prepare a 90-day strategy. This paper brings together all the material that covered in the class. The strategy is to be 6 pages (1,600 word). The student will also prepare a presentation of 5 minutes regarding their subject.

Total                                                                                               100%