MS Information Security and Assurance Domains of Study

Areas of Study Within the
M.S. in Information Assurance and Security Degree

The WGU Master of Science in Information Security and Assurance program content is based on industry best practices and governmental standards. In response to the 9/11 terrorist attacks, the U.S. Department of Defense and the National Security Agency created the guidelines and curricula for institutes of higher education that were used to develop the domains and areas of competency that are required to complete this degree. In addition to the governmental focus, this degree also includes domains that are relevant to nonpublic organizations. This degree incorporates competencies related to managing specific security threats, conducting comprehensive business continuity planning, and understanding and incorporating current laws/regulations into the development and management of a comprehensive Information assurance management system.

Cryptography Domain

Focuses on applied Cryptography for Network Security, E-Mail and Web-Based Systems, Wireless Networks, and Financial Systems.

Fundamentals of Interconnecting Network Devices

This course focuses on knowledge and skills required to successfully install, operate, and trouble shoot a small enterprises network.

Hacking Domain

This domain focuses on the practices of ethical and illegal hacking and on the techniques that are required to protect information assets from unwanted access and/or cyber attacks.

Cyberlaw, Regulations and Compliance Domain

The Cyberlaw, Regulations and Compliance domain prepares students to participate in legal analysis of relevant cyberlaws and address governance, standards, policies, and legislation. Students will conduct a security risk analysis for an enterprise system. In addition, students will determine cyber requirements for third‐party vendor agreements. Students will also evaluate provisions of both the 2001 and 2006 USA PATRIOT Acts.

Vulnerability Assessment Domain

This domain prepares the students to conduct internal threat assessments and to analyze their risks and impact on an organization.

Forensics and Network Intrusion Domain

This domain focuses on identifying vulnerabilities and neutralizing threats from outside entities and on investigating and preventing lose in the cyber-domain.

Risk Management Domain

Content focuses on categorizing levels of risk and understanding how risk can impact the operations of the business through a scenario involving the creation of a risk management program and business continuity program for a company and a business situation reacting to a crisis/disaster situation affecting the company.

Security Policy and Standards Domain

This domain focuses on the practices of planning and implementing organization-wide security and assurance initiatives as well as auditing assurance processes.

Disaster Recovery Planning, Prevention and Response Domain

This course prepares students to plan and execute industry best practices related to conducting organization-wide information assurance initiatives and to preparing an organization for implementing a comprehensive Information Assurance Management program.

Capstone Project

The Capstone Project is the culmination of the student’s WGU degree program. It requires the student to demonstrate the integration and synthesis of competencies in all domains required for the degree, particularly in the area of emphasis. It includes a work product specified in consultation with and with the approval of the mentor. It may be a project, a set of policy recommendations, a business plan, a marketing plan, action research, a strategic plan, a product, or a service.

Students will be able to choose from three areas of emphasis, depending on personal and professional interests. Students will complete a capstone project that deals with a significant real-world business problem that further integrates the components of the degree. Capstone projects will require an oral defense before a committee of WGU faculty.