School of Computer & Information Sciences
COURSE SYLLABUS
Course and Instructor Information
Course Name
ISOL/MSDF 633 – Legal, Regulations, Investigations, and Compliance
Section – 21
Summer 2020 – Full Term
Course Format: Hybrid Course with Required Residency
Residency Session Date: May 29, 2020 – May 31, 2020
Friday 5pm – 10pm; Saturday 8am – 7:30pm; Sunday 8am-1pm
Residency Session Course Site: Northern Kentucky Campus – ONLINE FORMAT
Professor
Melissa S. Gruner, J.D. – Adjunct Professor
Contact Information
Email: [email protected]
Office Location: Remote
Office Hours: By appointment
Nature of Course Content and Goals
Course Description
The course examines computer crimes, laws and regulations. It includes techniques for investigating a
crime, gathering evidence, and communicating results.
Course Objectives/
Learner Outcomes/ Assessments
Upon completion of this course, the student will:
· Recognize the legal aspects of information security systems.
· Examine the concept of privacy and its legal protections.
· Identify the basic components of the American legal system.
· Describe legal compliance laws addressing how public and private institutions protect the security and privacy of consumer financial information.
· Analyze intellectual property laws.
· Describe the role of contracts in online transactions and cyberspace.
· Identify cybercrime and tort law issues in cyberspace.
· Examine the principles requiring governance of information within organizations.
· Identify risk analysis and incident response procedures.
· Explain the importance of forensic examination in legal proceedings.
Course Website
Access to the course website is required via the iLearn portal on the University of the Cumberlands website: http://www.ucumberlands.edu/ilearn/
Books and Resources
Grama, Joanna Lyn. Legal Issues in Information Security, 2nd ed. Burlington, MA: Jones & Bartlett Learning, 2015
Student Lab Manual and Lab Access Key (also known as supplemental Lessons)
· YOU MUST HAVE THIS TO TAKE THE QUIZZES!
Other articles and readings may be assigned by course professor. Requirements and Policies
Academic Integrity/ Plagiarism
At a Christian liberal arts university committed to the pursuit of truth and understanding, any act of academic dishonesty is especially distressing and cannot be tolerated. In general, academic dishonesty involves the abuse and misuse of information or people to gain an undeserved academic advantage or evaluation. The common forms of academic dishonesty include:
· Cheating – using deception in the taking of tests or the preparation of written work, using unauthorized materials, copying another person’s work with or without consent, or assisting another in such activities.
· Lying – falsifying, fabricating, or forging information in either written, spoken, or video presentations.
· Plagiarism—using the published writings, data, interpretations, or ideas of another without proper documentation
Plagiarism includes copyin.
Beyond the EU: DORA and NIS 2 Directive's Global Impact
School of Computer & Information SciencesCOURSE.docx
1. School of Computer & Information Sciences
COURSE SYLLABUS
Course and Instructor Information
Course Name
ISOL/MSDF 633 – Legal, Regulations, Investigations, and
Compliance
Section – 21
Summer 2020 – Full Term
Course Format: Hybrid Course with Required Residency
Residency Session Date: May 29, 2020 – May 31, 2020
Friday 5pm – 10pm; Saturday 8am – 7:30pm; Sunday 8am-1pm
Residency Session Course Site: Northern Kentucky Campus –
ONLINE FORMAT
Professor
Melissa S. Gruner, J.D. – Adjunct Professor
Contact Information
Email: [email protected]
Office Location: Remote
Office Hours: By appointment
Nature of Course Content and Goals
Course Description
The course examines computer crimes, laws and regulations. It
includes techniques for investigating a
crime, gathering evidence, and communicating results.
Course Objectives/
Learner Outcomes/ Assessments
Upon completion of this course, the student will:
· Recognize the legal aspects of information security systems.
· Examine the concept of privacy and its legal protections.
· Identify the basic components of the American legal system.
· Describe legal compliance laws addressing how public and
private institutions protect the security and privacy of consumer
2. financial information.
· Analyze intellectual property laws.
· Describe the role of contracts in online transactions and
cyberspace.
· Identify cybercrime and tort law issues in cyberspace.
· Examine the principles requiring governance of information
within organizations.
· Identify risk analysis and incident response procedures.
· Explain the importance of forensic examination in legal
proceedings.
Course Website
Access to the course website is required via the iLearn portal on
the University of the Cumberlands website:
http://www.ucumberlands.edu/ilearn/
Books and Resources
Grama, Joanna Lyn. Legal Issues in Information Security, 2nd
ed. Burlington, MA: Jones & Bartlett Learning, 2015
Student Lab Manual and Lab Access Key (also known as
supplemental Lessons)
· YOU MUST HAVE THIS TO TAKE THE QUIZZES!
Other articles and readings may be assigned by course
professor. Requirements and Policies
Academic Integrity/ Plagiarism
At a Christian liberal arts university committed to the pursuit of
truth and understanding, any act of academic dishonesty is
especially distressing and cannot be tolerated. In general,
academic dishonesty involves the abuse and misuse of
information or people to gain an undeserved academic
advantage or evaluation. The common forms of academic
dishonesty include:
· Cheating – using deception in the taking of tests or the
preparation of written work, using unauthorized materials,
copying another person’s work with or without consent, or
assisting another in such activities.
· Lying – falsifying, fabricating, or forging information in
either written, spoken, or video presentations.
3. · Plagiarism—using the published writings, data,
interpretations, or ideas of another without proper
documentation
Plagiarism includes copying and pasting material from the
internet into assignments without properly citing the source of
the material.
Episodes of academic dishonesty are reported to the Vice
President for Academic Affairs. The potential penalty for
academic dishonesty includes a failing grade on a particular
assignment, a failing grade for the entire course, or charges
against the student with the appropriate disciplinary body.
Attendance Policy
When any student has exceeded 20% of the time prescribed for
any class, that student will be automatically dropped from that
particular class with the grade of “F.” This grade is placed on
the official transcript of the student and is treated as a failing
grade in calculating the grade point average. The definition of a
class absence is a student’s failure to attend class for any
reason. Instructors may count three times tardy or leaving early
to be equal to one class absence. There are no excused absences,
regardless of the reason for the class having been missed.
However, faculty will make reasonable provisions to allow
students to make up work if the absence is due to a university-
sponsored function or a medical or family emergency that is
documented in a timely manner.Allowance for students to make
up work for other reasons is at each instructor’s discretion. A
class absence does not excuse the student from being
responsible for course work missed; the student is responsible
for contacting the faculty member in order to make up class
assignments. The Vice President for Academic Affairs is the
authorized agent to consider any exceptions to the above
regulations.
Residency Attendance: Each student must be in attendance for
4. the entire duration of the required residency weekend. Late
arrivals and/or early departures are not permitted. Punctuality
is important as each student is required to have the documented
in-seat time per USCIS regulations. If a student is not in
attendance for the full session, he/she will be counted absent for
the entire session, and receive an automatic “F” and will be
required to pay the $300.00 make-up fee and attend a residency
make-up session.
Participation Policy
Study after study has linked successful academic performance
with good class participation. Those who assume positions of
responsibility must “show up” in order to be effective.
Therefore, students are expected to actively participate in
intelligent discussion of assigned topics in all areas (Discussion
Board Activities, Synchronous Sessions, Forums, Shared
Papers, etc.) to help process course material and/or to
demonstrate understanding of course content. Point adjustments
will be taken for non-participation.
Disability Accommodations
University of the Cumberlands accepts students with certified
disabilities and provides reasonable accommodations for their
certified needs in the classroom, in housing, in food service or
in other areas. For accommodations to be awarded, a student
must submit a completed Accommodations Application form
and provide documentation of the disability to the Disability
Services Coordinator (Mr. Jacob Ratliff, Boswell Campus
Center, Student Services Office Suite, [email protected]). When
all paperwork is on file, a meeting between the student and the
Coordinator will be arranged to discuss possible
accommodations before accommodations are formally approved.
Students must then meet with the Coordinator at the beginning
of each semester before any academic accommodations can be
certified for that term. Certifications for other accommodations
are normally reviewed annually.
Academic Appeal
Both undergraduate and graduate students have the right to
5. challenge a grade. If discussions with the course instructor and
department chair do not lead to a satisfactory conclusion,
students may file a formal written appeal with the Vice
President for Academic Affairs, who will forward the appeal to
the chair of the Academic Appeals Committee. This formal
written appeal must be filed by the end of the 4th week of
classes in the next regular term following the term in which the
course in question was taken. The Academic Appeals Committee
then gathers information from the student, the instructor, and
any other relevant parties. The Committee will deliver its
recommendation on the complaint to the Vice President for
Academic Affairs. After reviewing this recommendation and
concurring or amending it, the Vice President for Academic
Affairs will inform the student and instructor of the disposition
of the complaint no later than the last day of classes of the term
in which the complaint was filed. Records of all actions
regarding academic grade appeals, including their final
disposition, are maintained by the Vice President for Academic
Affairs and the Academic Appeals Committee. (Undergraduate
Catalog/Graduate Catalog)
Appropriate Online Behavior
Prohibited learner conduct includes, but is not limited to the
following:
Illegal Activities: Learners may not post, transmit, promote, or
distribute content that they know is illegal or could reasonably
be expected to know is illegal. Conduct that violates federal,
state or local laws is prohibited.
Theft: Learners may not post, transmit, promote, or distribute
content that violates copyright or other protected intellectual
property rights. Unauthorized use of university property is
prohibited. Theft or abuse of computer resources is prohibited.
Disrespect: Learners may not harass, threaten, or embarrass
others. Learners may not post, transmit, promote, or distribute
6. content that is racially, religiously, or ethnically offensive or is
harmful, abusive, vulgar, sexually explicit, or otherwise
potentially offensive. Learners must refrain from behavior that
may be perceived as inappropriate, offensive, and unfair and
must treat all other learners, faculty, staff, and administrators
with respect at all times.
Dishonesty: Learners may not intentionally provide false
information, forge, alter, or falsify documents. Learners may
not represent the academic work of others as their own.
Learners engaging in prohibited conduct will be subject to
disciplinary action, including, but not limited to: course failure,
probation, suspension, or expulsion. Such sanctions may lead to
additional academic and financial consequences. Learners who
are unable to complete a course resulting from disciplinary
sanctions, suspension or expulsion are not eligible for tuition
refunds.
Student Responsibilities and Course Policies
· The only authorized electronic means of academic,
administrative, and co-curricular communication between
University of the Cumberlands and its students is through the
UCumberlands email system (i.e. Webmail). Each student is
responsible for monitoring his/her University email account
frequently. This is the primary email account used to
correspond with you directly by the University; imperative
program information is sent to this email account specifically
from campus and program office.
· Students should check for e-mail and class announcements
using iLearn (primary) and University of the Cumberlands
webmail (secondary).
· Students are expected to find out class assignments for missed
classes and make up missed work.
· Students are expected to find out if any changes have been
made in the class or assignment schedule.
7. · Written workmust be presented in a professional manner.
Work that is not
submitted in a professional manner will not be evaluated and
will be returned as unacceptable.
· There is a craft to writing. Spelling, grammar, punctuation
and diction (word usage) are all tools of that craft. Writing at
the collegiate level will show careful attention to these elements
of craft. Work that does not exhibit care with regard to these
elements will be considered as inadequate for college writing
and graded accordingly.
· Students are expected to take the examinations on the
designated dates. If you are unable to take the exam on the
scheduled date and know in advance, you are to make
arrangements with your professor before the designated date. If
you miss the exam, you must have a legitimate reason as
determined by your professor.
Recognizing that a large part of professional life is meeting
deadlines, it is necessary to develop time management and
organizational skills. Failure to meet the course deadlines may
result in penalties. Keep in mind that all deadlines are set using
Eastern Standard Time (EST). Late assignments will NOT be
accepted.
Course Activities and Experiences
Students are expected to:
• Review any assigned reading material and prepare responses
to homework assigned.
• Actively participate in activities, assignments, and
discussions.
• Evaluate and react to each other’s work in a supportive,
constructive manner.
• Complete specific assignments and exams when specified and
in a professional manner.
• Utilize learned technologies for class assignments.
• Connect content knowledge from core courses to practical
training placement and activities.
8. Writing Expectations
Learning outcomes for candidates’ writing competencies include
clarity of thought, discernment in planning and organization,
and integration of evidence and criteria.
· The instructor expects that students will have knowledge of
appropriate forms of documentation and use it where
appropriate. APA format is required and style of notation to
credit all sources that are not your own.
· There is a craft to writing. Spelling, grammar, punctuation
and diction (word usage) are all tools of that craft. Writing at
the collegiate level will show careful attention to these elements
of craft. Work that does not exhibit care with regard to these
elements will be considered as inadequate for college writing
and graded accordingly.
· All assignments, unless otherwise instructed, should be
submitted in APA format.
Links to Support
Orientation to I-Learn: Student training course on I-Learn,
https://ucumberlands.blackboard.com/webapps/portal/frameset.j
sp
Book Store:
https://cumber.bncollege.com/shop/cumberlands/home
Library: http://www.ucumberlands.edu/library/
Academic Resources & Writing Center:
www.ucumberlands.edu/learningcommons
Course Assignments and EvaluationCourse Evaluation
Grading will be based on accumulated points of each graded
requirement in the course distributed as described in the table
below:
Required Assignments*
Assignment
Description
Weight
Residency
9. Weekend
There are three components to the Residency Weekend
1. Midterm Exam (30%)
2. Residency Project (20%) - The Residency Project is team-
based work that challenges you to apply the course lessons in a
way that demonstrates your understanding of legal principles,
your writing abilities, and presentation skills.
3. Practical Connection Assignment (10%)
60%
Homework Assignments
Weekly labs, quizzes, discussion posts and other assessment
devices will be assigned to supplement the required readings.
Late work is not accepted. I will drop the lowest assignment
score, which should minimize the impact of missing one
assignment.
10%
Final Exam
Examination covering the entire course content with a focus on
chapters 7-15
30%
TOTAL
100%
* Assignments may change at the discretion of the professor and
changes in the assignments will be announced in class. Students
are responsible for noting and completing any changes in
assignments.
Grading ScaleGraded work will receive a numeric score
reflecting the quality of performance as given above in
evaluation methods. The overall course grade will be
determined according to the following scale:
A= 90 – 100 (90% - 100%)
B= 80 – 89 (80% - 89%)
10. C = 70 – 79 (70% - 79%)
F < 69 (Below 69%)
Course Schedule
Weekly Unit
Unit Topics
Reading
Assignments and Due Dates
Week 1
May 4 – May 10
Fundamental Concepts:
· Information Security Overview
· Privacy Overview
Ch. 1 -2
Syllabus Quiz – Due Sunday, May 10
Lab #1 Creating an IT Infrastructure Asset List and Identifying
Where Privacy Data Resides
Lab #2 Case Study on U.S. Veterans Affairs and Loss of
Privacy Information
Lab Quizzes Due Wednesday, May 13
*Failing to Participate in Week 1 may result in being dropped
from the course.
Week 2
May 11 – May 17
Fundamental Concepts:
· The American Legal System
11. Ch. 3
Lab # 3 Case Study on PCI DSS Noncompliance: CardSystems
Solution
s
Quiz Due Sunday, May 17
Week 3
May 18 – May 24
Laws Influencing Information Security:
· Security and Privacy of Consumer Financial Information
Ch. 4-5
Lab #4 Analyzing and Comparing GLBA and HIPAA
Lab #5 Case Study on Issues Related to Sharing Consumers’
Confidential Information
Lab Quiz Due Sunday, May 24
Week 4
May 25 – May 31
12. Residency:
May 29 – May 31
Laws Influencing Information Security:
· Security and Privacy of Health Information
Residency Weekend:
· Midterm Examination
· Residency Project
· Team-based Paper
· Team-based Presentation
· Practical Connection Assignment
Ch. 6
Residency Schedule
Friday, May 29
· Lecture & Midterm Exam
Saturday, May 30
· Project Description, Teamwork, Team Presentations
13. Sunday, May 31
· Team Presentations and Practical Connection Assignment
Week 5
June 1 – June 7
Laws Influencing Information Security:
· Corporate Information Security and Privacy Regulation
Ch. 7
Discussion Post Due Sunday, June 7
Week 6
June 8 – June 14
Laws Influencing Information Security:
· Federal Government Information Security and Privacy
Regulations
Ch. 8
Discussion Post Due Sunday, June 14
Week 7
June 15 – June 21
14. Laws Influencing Information Security:
· State Laws Protecting Citizens Information and Breach
Notification Laws
Ch. 9
Lab #6 Identifying the Scope of Your State’s Data and Security
Breach Notification Law
Lab Quiz Due Sunday, June 21
Week 8
June 22 – June 28
Review Chapters 1-9
**Begin studying for the Final Exam**
Ch. 1-9
Discussion Post Due Sunday, June 28
Week 9
June 29 – July 5
Laws Influencing Information Security:
· Intellectual Property Law
15. Ch. 10
Lab #7 Case Study on Digital Millennium Recording Act:
Napster
Lab Quiz Due Sunday, July 5
Week 10
July 6 – July 12
Laws Influencing Information Security:
· The Roll of Contracts
Ch. 11
Discussion Post Due Sunday, July 12
Week 11
July 13 – July 19
Laws Influencing Information Security:
· Criminal Law and Tort Issues in Cyberspace
Ch. 12
Lab #8 Cyberstalking or Cyberbullying and Laws to Protect
16. Individuals
Lab Quiz Due Sunday, July 19
Week 12
July 20 – July 26
Review Chapters 1-12
**Study for the Final Exam**
Ch. 1-12
Discussion Post Due Sunday, July 26
Week 13
July 27 – August 2
Security and Privacy in Organizations:
· Information Security Governance
Ch. 13
Lab #9 Recommending IT Security Policies to Help Mitigate
Risk
17. Lab Quiz Due Sunday, August 2
Week 14
August 3 – August 9
Security and Privacy in Organizations:
· Risk Analysis, Incident Responses, and Contingency Planning
Ch. 14
Lab #10 Case Study on Computer Forensics: Pharmaceutical
Company
Lab Quiz Due Sunday, August 9
Week 15
August 10 – August 16
Security and Privacy in Organizations:
· Computer Forensics and Investigation
Ch. 15
**Prepare for Final Exam**
Week 16
18. August 17
Final Exam
Final Evaluations
*SHORT WEEK* All assignments MUST be completed by
August 17 at 11:59 pm EST.
Ch. 1-15
Final Exam
Due Monday, August 17
Syllabus Disclaimer: This syllabus is intended as a set of
guidelines for this course and the instructor reserves the right to
make modifications in content, schedule, and requirements as
necessary to promote the best education possible within
conditions affecting this course. Any changes to the syllabus
will be discussed with the students.
1