Introduction to Business Continuity, Security, and Risk Management (MET AD 610)

This overview course examines the management issues involved with assessing the security and risk environments in both the private and public sectors in order to assure continuous system-wide operations. The course studies the elements of risk assessment and operational continuity using the project management framework of planning, organizing, and control. Students are exposed to the role of the firm in crisis response and management as well as the terms, systems, and interactions necessary to assure continuous operations. Topics include: the role and need for comprehensive assurance strategy and planning; the security aspects of the firm; an overview of the system-wide structure—as well as the organizations within that structure—designed to plan for and respond to local or national crisis; the social and emotional impact on the workforce as well as its effect on productivity; and the organizational infrastructure relating to national, regional, and international compliance. 4 cr

System-Wide Risk Planning and Compliance (MET AD 613)

Students are exposed to the important issues relating to corporate and organizational security and risk from both the perspective of systems designed to protect against disasters and aspects of emergency preparedness should such systems fail. Security areas of study include information technology, terrorism, and other organizational disruptions. Students study proactive risk assessment though management risk analysis techniques and simulations. Students will be able to design a company or agency global assurance plan, organize the strategy to make the plan operational, and implement control measures to assess the plan’s degree of success. The course also provides explanations of legal/regulatory, auditing, and industry-specific requirements related to compliance, control, and reporting issues in business risk management. The role of establishing and maintaining standards by local, national, and international agencies is discussed, as is the importance of these agencies in certifying operations. 4 cr

Incident Response and Disaster Recovery (MET AD 614)

This course covers the preparation, organization, and prevention issues related to incident response and disaster recovery including unauthorized network intrusion and loss of financial systems. Principles of incident response and disaster recovery are presented along with methods to identify vulnerabilities and take appropriate countermeasures to prevent and mitigate failure risks. The course also lays the foundation for disaster recovery principles and planning, and presents strategies for minimizing extended downtime that can lead to loss. 4 cr

Project Risk, Continuity, and Cost Management (MET AD 644)

This course introduces the art and science of project risk as well as continuity management and cost management. Managing the risk of a project as it relates to a three- part systematic process of identifying, analyzing, and responding is examined through actual case studies. Students learn how to manage the components of a project to assure it can be completed through both general and severe business disruptions on local, national, and international levels. Students learn the process of cost management, early cost estimation, detailed cost estimation, and cost control using earned value method. Students study in depth the issues of project procurement management and the different types of contracts for various scope scenarios. 4 cr

IT Security Policies and Procedures (MET CS 684)

Prereq: MET CS 579 or MET CS 669. This course enables IT professional leaders to identify emerging security risks and implement highly secure networks to support organizational goals. Discussion of methodologies for identifying, quantifying, mitigating, and controlling risks. Students implement comprehensive IT risk management plans (RMP) that identify alternate sites for processing mission critical applications, and techniques to recover infrastructure, systems, networks, data, and user access. The course also discusses related topics such as: disaster recovery; handling information security; protection of property, personnel, and facilities; protection of sensitive and classified information; privacy issues; and criminal, terrorist, and hostile activities.4 cr