Cybersecurity Graduate Courses

Why do individuals and groups commit crimes in digital environments? In this course, you will explore how criminological theory helps explain cybercrime and how these insights inform modern criminal justice responses. Drawing on both micro-level and macro-level theories of crime, you will examine how traditional criminological frameworks are adapted to understand offenses such as online fraud, hacking, and other forms of cyber-enabled crime. Through case studies of real cybercrime incidents, the course explores patterns of offending, victimization, legal responses, and the broader social costs of cybercrime. By the end of the course, you will understand how theory, law, and policy shape strategies for preventing and responding to cybercrime within contemporary justice systems.  [ 4 cr. ]

How can cyber threats targeting critical infrastructure be identified, analyzed, and prevented? In this course, you will examine the evolving nature of cyberterrorism and the risks posed to national security, public safety, and critical systems. Drawing on cyber intelligence methods and real-world case studies, the course explores how malicious actors conduct information attacks, target infrastructure systems, and exploit digital technologies to advance extremist or criminal objectives. Working in a laboratory environment, you will analyze cyber incidents, examine attack strategies, and develop defensive and policy responses. By the end of the course, you will understand how cyber intelligence, digital investigation, and security strategies are used to detect, assess, and counter cyber-enabled threats to critical infrastructure.  [ 4 cr. ]

How is digital evidence recovered and analyzed during cybercrime investigations? In this course, you will develop practical skills for conducting forensic examinations of computers, digital devices, and networks. Working in the Virtual Security Lab, you will learn how investigators identify, preserve, analyze, and document digital evidence related to cybercrime incidents. The course introduces industry-standard digital forensic tools and methods used in criminal investigations and legal proceedings. Through hands-on exercises and case-based scenarios, you will examine digital artifacts, reconstruct events, and prepare forensic documentation suitable for investigative and legal contexts. By the end of the course, you will understand the principles of digital forensic investigation and how digital evidence supports cybercrime enforcement and prosecution.  [ 4 cr. ]

Prerequisite: METCS535 or METCS625 or instructor's consent. In this course, you will be introduced to fundamental concepts and principles of cybersecurity and how to apply them in developing security mechanisms and policies. Explore topics such as basic risk assessment and management, legal and ethical issues, cyber attack defense methods and tools, security principles, models, and components. You will also learn about different crypto protocols, techniques, and tools, including symmetric and asymmetric encryption algorithms, hashing, public key infrastructure, and how they can be used. You will learn to identify security threats and techniques to defend hardware, operating systems, networks, and applications in modern computing environments. Hands-on labs using current tools will also be completed as part of the required coursework.  [ 4 cr. ]

Prerequisites: MET LB 102 or consent of instructor. - This course presents the foundations of data communications and takes a bottom-up approach to computer networks. The course concludes with an overview of basic network security and management concepts. Restrictions: This course may not be taken in conjunction with MET CS 425 (undergraduate) or MET CS 535. Only one of these courses can be counted toward degree requirements.  [ 4 cr. ]

The course provides a strong foundation in database security and auditing by utilizing Oracle scenarios and step-by-step examples. The following topics are covered: security, profiles, password policies, privileges, roles, Virtual Private Databases, and auditing. The course also covers advanced topics such as SQL injection, database management, and security issues, such as securing the DBMS, enforcing access controls, and related issues.  [ 4 cr. ]

This course covers important topics that students need to understand in order to effectively manage a successful cybersecurity and privacy program, including governance, risk management, asset classification and incidence response. Students are first introduced to cybersecurity & privacy policy frameworks, governance, standards, and strategy. Risk tolerance is critical when building a cybersecurity and privacy program that supports business goals and strategies. Risk management fundamentals and assessment processes will be reviewed in depth including the methodology for identifying, quantifying, mitigating and controlling risks. Asset classification and the importance of protecting Intellectual Property (IP) will prepare students to understand and identify protection mechanisms needed to defend against malicious actors, including industry competitors and nation states. Incident Response programs will cover preparation and responses necessary to triage incidents and respond quickly to limit damage from malicious actors.   [ 4 cr. ]

Prerequisites: (MET CS 535 or MET CS 625) and (MET CS 595 or MET CY 100) or consent of instructor. This course is designed to provide students with a comprehensive understanding of the fundamental concepts, principles, technologies, and best practices to secure both computer networks and clouds. Topics include an overview of network threats, SSL/TLS, Kerberos, PKI, IPsec, DNSsec, SSH, Firewall, IDS, VPD, electronic mail security, wireless network security, Blockchain, TOR, Cloud architecture, an overview of cloud threats, architecture protection, and data protection in Cloud, IAM, security best practices, etc. Upon the completion of the course, students are expected to know the threats and vulnerabilities that networks and cloud systems face, along with the strategies and tools used to mitigate those risks. Hands-on labs based on existing tools are provided and required.  [ 4 cr. ]

Provides a comprehensive understanding of digital forensics and investigation tools and techniques. Learn what computer forensics and investigation is as a profession and gain an understanding of the overall investigative process. Operating system architectures and disk structures are discussed. Studies how to set up an investigator's office and laboratory, as well as what computer forensic hardware and software tools are available. Other topics covered include importance of digital evidence controls and how to process crime and incident scenes, details of data acquisition, computer forensic analysis, e-mail investigations, image file recovery, investigative report writing, and expert witness requirements. Provides a range of laboratory and hands-on assignments either in solo or in teams. With rapid growth of computer systems and digital data this area has grown in importance. Prereq: Working knowledge of windows computers, including installing and removing software. Access to a PC meeting the minimum system requirements defined in the course syllabus.  [ 4 cr. ]

Overview of mobile forensics investigation techniques and tools. Topics include mobile forensics procedures and principles, related legal issues, mobile platform internals, bypassing passcode, rooting or jailbreaking process, logical and physical acquisition, data recovery and analysis, and reporting. Provides in-depth coverage of both iOS and Android platforms. Laboratory and hands-on exercises using current tools are provided and required.  [ 4 cr. ]

Prerequisites: At least two programming-intensive or software development courses or consent of instructor. You should be proficient in at least one high-level programming language. Completion of MET CS 673 is preferred. - An overview of techniques and tools to develop secure software. You will focus on the application of security with topics including secure software development processes, DevSecOps, threat modeling, secure requirements and architectures, vulnerability and malware analysis using static code analysis and dynamic analysis tools, and vulnerabilities in C/C ++ and Java programs, Crypto and secure APIs, vulnerabilities in web applications and mobile applications, and security testing will also be covered. You will complete the required hands-on lab and programming exercises using current tools.  [ 4 cr. ]

Prerequisites: (MET CS 248 & MET CS 566) or consent of instructor - The course covers the main concepts and principles of cryptography, with the main emphasis on public key cryptography. It begins with the review of integers and a thorough coverage of the fundamentals of finite group theory, followed by the RSA and ElGamal ciphers. Primitive roots in cyclic groups and the discrete log problem are discussed. Baby-step Giant-step and the Index Calculus probabilistic algorithms to compute discrete logs in cyclic groups are presented. Naor -- Reingold and Blum -- Blum -- Shub Random Number Generators as well as Fermat, Euler and Miller-Rabin primality tests are thoroughly covered. Pollard's Rho, Pollard's and Quadratic Sieve factorization algorithms are presented. The course ends with the coverage of some oblivious transfer protocols and zero-knowledge proofs. There are numerous programming assignments in the course.  [ 4 cr. ]

The course changes from semester to semester. More than one special topics course can be offered in a given semester. Course descriptions for all sections are listed below. For more information, please contact MET Department of Computer Science.  [ 4 cr. ]