The Curriculum | 12 credits
Our cybersecurity courses are written and taught by the top experts in the field and focus on hands-on practical skills you will use in your new job. You will take courses one at a time, and for each course, you can choose either the Standard Term length of 13 weeks or the Accelerated Term at 8 weeks. This is the curriculum order for this program.
Click on each course title for a full description.
CORE COURSES | 9 credits
ACS 3275: Security Foundations | SEC275 + GFACT
SANS Course: SEC275: Foundations: Computers, Technology, & Security
Certification: GIAC Foundational Cybersecurity Technologies (GFACT)
3 Credit Hours
ACS 3275 Security Foundations is the best course available to learn core knowledge and develop practical skills in computers, technology, and security foundations that are needed to kickstart a career in cybersecurity. The course features a comprehensive variety of innovative, hands-on labs, and practical exercises that go far beyond what is offered in any other foundational course in cybersecurity. These labs are developed by leading subject-matter experts, drawing on the latest technology, techniques, and concepts in cybersecurity.
The course provides a level of sufficient theoretical understanding and applied practical skills that will enable you to speak the same language as industry professionals. You’ll develop fundamental skills and knowledge in key IT subject areas such as:
- Computer Components & Concepts
- Operating Systems, Containers, & Virtualization
- Linux
- Networking Fundamentals
- The Web: Search Engine & Servers
- Practical Programming – Python and C
- Windows Foundations
- Advanced Computer Hardware (e.g., CPU & Memory)
- Encryption
- Introduction to Basic Security Concepts
- Introduction to Forensics
- Introduction to Reconnaissance, Exploitation, and Privilege Escalation
- Introduction to Network & Computer Infiltration (e.g., Lateral Movement)
ACS 3401: Security Essentials | SEC401 + GSEC
SANS Course: SEC401: Security Essentials - Network, Endpoint, and Cloud
Certification: GIAC Security Essentials (GSEC)
3 Credit Hours
ACS 3401 is a technically-oriented survey course in which you'll learn the most effective steps to prevent cyber attacks and detect adversaries. In classes and hands-on labs, you'll learn to develop effective security metrics that provide a focused playbook that IT can implement, auditors can validate, and executives can understand. You'll explore methods to analyze and assess the risk to your environment in order to drive the creation of a security roadmap that focuses on the right areas of security. And you'll learn practical tips and tricks to focus in on high-priority security problems and on the actions required to protect and secure an organization's critical information assets and business systems.
ACS 3504: Security Incident Handling & Hacker Exploits | SEC504 + GCIH
SANS Course: SEC504: Hacker Tools, Techniques, and Incident Handling
Certification: GIAC Certified Incident Handler Certification (GCIH)
3 Credit Hours
By adopting the viewpoint of a hacker, ACS 3504 provides an in-depth investigation of the critical activity of incident handling. You'll be taught how to manage intrusions by first looking at the techniques used by attackers to exploit a system. You'll learn responses to those techniques, which can be adopted within the framework of the incident handling process to handle attacks in an organized way. The faculty instruction, lab exercises, and exam are coordinated to develop and test your ability to use the core capabilities required for incident handling.
ELECTIVE COURSES | 3 credits (choose one)
Cyber Defense
ACS 4450: Blue Team Fundamentals: Security Operations and Analysis | SEC450 + GSOC
SANS Course: SEC450: Blue Team Fundamentals: Security Operations and Analysis
Certification: GIAC Security Operations Certified (GSOC)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermACS 4450 provides students with technical knowledge and key concepts essential for security operation center (SOC) analysts and new cyber defense team members. By providing a detailed explanation of the mission and mindset of a modern cyber defense operation, this course will jumpstart and empower those on their way to becoming the next generation of blue team members.
ACS 4501: Advanced Security Essentials | SEC501 + GCED
SANS Course: SEC501: Advanced Security Essentials - Enterprise Defender
Certification: GIAC Certified Enterprise Defender (GCED)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermACS 4501 brings together all the elements of a modern cyber defense program. Students learn how to identify threats and build defensible networks to minimize the impact of an attack, use tools to detect adversaries, decode and analyze packets using various tools to identify anomalies, understand how adversaries compromise networks, perform penetration testing against their own organization to find vulnerabilities, apply the six-step incident response plan, use tools to remediate malware infections, and create a data classification program to make data loss protection systems effective.
ACS 4503: Intrusion Detection In-Depth | SEC503 + GCIA
SANS Course: SEC503: Network Monitoring and Threat Detection In-Depth
Certification: GIAC Certified Intrusion Analyst Certification (GCIA)
3 Credit Hours
ACS 4503 delivers the technical knowledge, insight, and hands-on training you need to defend your network with confidence. You will learn about the underlying theory of TCP/IP and the most used application protocols, such as DNS and HTTP, so that you can intelligently examine network traffic for signs of an intrusion. You will get plenty of practice learning to master different open source tools like tcpdump, Wireshark, Snort, Bro, tshark, and SiLK. Daily hands-on exercises suitable for all experience levels reinforce the course book material so that you can put your knowledge into action.
ACS 4511: Cybersecurity Engineering: Advanced Threat Detection and Monitoring | SEC511 + GMON
SANS Course: SEC511: Cybersecurity Engineering: Advanced Threat Detection and Monitoring
Certification: GIAC Continuous Monitoring Certification (GMON)
Prerequisite: ACS 3504
3 Credit HoursA new proactive approach to security is needed to enhance the capabilities of organizations to detect threats that will inevitably slip through their defenses. ACS 4511 teaches this new proactive approach and strengthens student’s skills to undertake that proactive approach. The Defensible Security Architecture, Network Security Monitoring (NSM)/Continuous Diagnostics and Mitigation (CDM)/Continuous Security Monitoring (CSM) taught in this course will help students best position their organization or Security Operations Center (SOC) to analyze threats and detect anomalies that could indicate cybercriminal behavior.
Penetration Testing
ACS 4542: Web App Penetration Testing & Ethical Hacking | SEC542 + GWAPT
SANS Course: SEC542: Web App Penetration Testing and Ethical Hacking
Certification: GIAC Web Application Penetration Tester (GWAPT)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermWith in-depth, hands-on labs and high-quality course content, ACS 4542 helps students move beyond push-button scanning to professional, thorough, and high-value web application testing. This enables students to demonstrate the impact of inadequate security that plagues most organizations’ websites. The addition of a series of enrichment exercises that strengthen students’ ability to work in Python and understand how the networks and operating systems enable web attacks to succeed so as to become even more insightful penetration testers.
ACS 4560: Enterprise Penetration Testing | SEC560 + GPEN
SANS Course: SEC560: Enterprise Penetration Testing
Certification: GIAC Penetration Tester Certification (GPEN)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermEvery organization needs skilled information security personnel who can probe for vulnerabilities that attackers might exploit in networks, web-based applications, and computer systems, and mitigate them. ACS 4560 is specially designed to get you ready for that role. The course starts with proper planning, scoping and recon, then dives deep into scanning, target exploitation, password attacks, and web app manipulation, with over 30 detailed hands-on labs. After building your skills, you'll conduct an end-to-end pen test, applying knowledge, tools, and principles from throughout the course as you discover and exploit vulnerabilities in a realistic sample target organization.
Digital Forensics and Incident Response
ACS 4500: Windows Forensic Analysis | FOR500 + GCFE
SANS Course: FOR500: Windows Forensic Analysis
Certification: GIAC Certified Forensic Examiner (GCFE)
Prerequisite: ACS 3504
3 Credit HoursThis course focuses on the critical knowledge of the Windows Operating System that every digital forensic analyst needs to investigate computer incidents successfully. Students learn how computer forensic analysts focus on collecting and analyzing data from computer systems to track user-based activity that can be used in internal investigations or civil/criminal litigation. The course covers the methodology of in-depth computer forensic examinations, digital investigative analysis, and media exploitation so each student will have complete qualifications to work as a computer forensic investigator helping to solve and fight crime.
ACS 4508: Advanced Digital Forensics & Incident Response | FOR508 + GCFA
SANS Course: FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics
Certification: GIAC Certified Forensic Analyst (GCFA)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermACS 4508 teaches the necessary capabilities for forensic analysts and incident responders to identify and counter a wide range of threats within enterprise networks. This course is constantly updated and addresses today’s incidents by providing hand-on forensics tactics and techniques that elite responders are successfully using in real-world breach cases.
Cloud Security
ACS 4488: Cloud Security Essentials | SEC488 + GCLD
SANS Course: SEC488: Cloud Security Essentials
Certification: GIAC Cloud Security Essentials Certification (GCLD)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermACS 4488 covers Amazon Web Services, Azure, Google Cloud, and other cloud service providers (CSPs). Like foreign languages, cloud environments have similarities and differences, and this course will introduce you to the language of cloud security. Upon completion of this course, you will be able to advise and speak about a wide range of cybersecurity topics and successfully navigate the challenges and opportunities presented by cloud service providers.
ACS 4510: Cloud Security Controls and Mitigations | SEC510 + GPCS
SANS Course: SEC510: Cloud Security Controls and Mitigations
Certification: GIAC Public Cloud Security (GPCS)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermToday's organizations depend on complex, multicloud environments which must support hundreds of different services across multiple clouds. These services are often insecure by default. Similar services in different Cloud Service Providers (CSPs) need to be protected using very different methods. Security teams need a deep understanding of AWS, Azure, and Google Cloud services to lock them down properly. Checking off compliance requirements is not enough to protect the confidentiality, integrity, and availability of your organization's data, nor will it prevent attackers from taking your critical systems down. With the right controls, organizations can reduce their attack surface and prevent security incidents from becoming breaches. Mistakes happen. Limit the impact of the inevitable.
Industrial Control Systems Security
ACS 4410: Security Essentials for Industrial Control Systems | ICS410 + GICSP
SANS Course: ICS410: ICS/SCADA Security Essentials
Certification: Global Industrial Cyber Security Professional Certification (GICSP)
Prerequisite: BACS 3504
3 Credit Hours
8 Week Course TermACS 4410 is designed to help traditional IT personnel fully understand the design principles underlying control systems and how to support those systems in a manner that ensures availability and integrity. In parallel, the course addresses the need for control system engineers and operators to better understand the important role they play in cybersecurity. Students will learn the language, the underlying theory, and the basic tools for industrial control system security in setting across a wide range of industry sectors and applications.