ICS 688 Cyber Threat Intelligence
The course will provide students with foundational concepts and practical skills in the field of cyber threat intelligence that can be leveraged to defend against sophisticated network intrusions and loss of proprietary information. The course will discuss various phases of the intelligence lifecycle including developing intelligence requirements, collecting, analyzing, and disseminating information; and using cyber threat intelligence to improve security at the tactical, operational, and strategic levels.
First day attendance is mandatory.Prerequisites: Graduate standing. Note: Students are responsible to both be aware of and abide by prerequisites for ICS courses for which they enroll, and will be administratively dropped from a course if they have not met prerequisites.
Prerequisites
Special information
4 Graduate credits
Effective January 10, 2016 to present
Learning outcomes
General
- To understand CTI, its key characteristics, value, and benefits.
- To apply CTI at the tactical, operational, and strategic levels in order to identify sophisticated attacks and improve existing defense mechanisms.
- To examine various models to create consistent and repeatable Cyber Threat Intelligence output.
- To characterize intruders by understanding tactics, techniques, and procedures that are involved in an attack.
- To interpret various indicators of compromise that are used in performing intrusion analysis.
- To demonstrate the understanding of various protocols and frameworks involved in sharing of cyber threat intelligence.
- To collect and apply cyber threat intelligence from various sources with an emphasis on open source intelligence