MSCS: 503 – Cybersecurity Risk Management – Florida Coastal University

About Course

This course provides an in-depth exploration of methods for assessing and managing cybersecurity risks within organizations.
Students will learn to identify potential threats, evaluate their impact, and develop strategies to mitigate risks while ensuring business continuity.
The course covers risk assessment frameworks, compliance requirements, and the role of cybersecurity in corporate governance.
Emphasis is placed on applying theoretical concepts to real-world scenarios, enabling students to effectively manage cybersecurity risks in various organizational settings.

Understand Ethical Hacking principles and Cybersecurity defense strategies
Set up Secure Penetration Testing Lab environments using Virtual Machines
Perform Information Gathering, Footprinting and Network Scanning
Identify Vulnerabilities using industry tools like Nmap, Nessus and OpenVAS
Apply Exploitation techniques using Metasploit Framework
Conduct Web Application Security Testing including SQL Injection and XSS
Analyze Wireless Network Security risks and mitigation techniques
Understand Social Engineering attacks and Human Security risks
Prepare Professional Penetration Testing Reports and Responsible Disclosure
Apply Legal and Ethical standards in Ethical Hacking engagements

Course Content

Week 1: Introduction To Cybersecurity Risk Management

Week 1 Introduction To Cybersecurity Risk Management

04:32
LO1: Define Cybersecurity Risk Management And Explain Its Importance In Modern Organizations

00:00
LO2: Describe Core Risk Concepts Threats Vulnerabilities Likelihood Impact Risk Appetite In A Cybersecurity Context

00:00
LO3: Analyze How Core Cybersecurity Risk Concepts Support Organizational Objectives And Inform Strategic Decision Making

13:03
Multiple Choice Questions
True/False Questions
Scenario-Based Multiple Choice Questions
Key-Terms and Concepts Questions
Short Answer Questions
Written Assignment
Presentation Task
Role-Playing Activity
Peer Review Task
Exercises and Activities Adaptation

Week 2: Risk Assessment Frameworks NIST CSF ISO IEC 27005 Others

Week 2: Risk Assessment Frameworks NIST CSF ISO IEC 27005 Others

00:00
LO1: Compare Major Risk Assessment Frameworks NIST CSF ISO IEC 27005 Based On Structure Purpose And Applicability

00:00
LO2: Apply A Selected Framework To Outline Key Steps In Conducting A Cybersecurity Risk Assessment

00:00
LO3: Evaluate And Justify The Selection Of An Appropriate Risk Assessment Framework For A Given Organizational Context

00:00
Multiple Choice Questions
True/False Questions (copy)
Scenario-Based Multiple Choice Questions (copy)
Key-Terms and Concepts Questions (copy)
Short Answer Questions (copy)
Written Assignment
Presentation Task
Role-Playing Activity
Peer Review Task
Exercises and Activities Adaptation

Week 3: Identifying And Assessing Cybersecurity Threats

Week 3 Identifying And Assessing Cybersecurity Threats

00:00
LO1: Explain Threat Modeling Concepts And Identify Common Threat Sources And Attack Vectors

00:00
LO2: Conduct A Basic Vulnerability Assessment And Relate Vulnerabilities To Potential Threat Exploitation Paths

00:00
LO3: Analyze And Prioritize Cybersecurity Risks By Correlating Threat Sources Vulnerabilities And Potential Impacts

00:00
Multiple Choice Questions
True/False Questions
Scenario-Based Multiple Choice Questions
Key-Terms and Concepts Questions
Short Answer Questions

Week 4: Developing Risk Mitigation Strategies Avoid Transfer Mitigate Accept

Week 4 Developing Risk Mitigation Strategies Avoid Transfer Mitigate Accept

00:00
LO1: Differentiate Risk Treatment Options Avoidance Transfer Mitigation And Acceptance

00:00
LO2: Propose Appropriate Controls And Treatments For Prioritized Risks Based On Organizational Constraints

00:00
LO3: Design A Risk Treatment Plan That Balances Risk Treatment Options Organizational Constraints And Residual Risk

00:00
Multiple Choice Questions
True/False Questions
Scenario-Based Multiple Choice Questions
Key-Terms and Concepts Questions
Short Answer Questions

Week 5: Regulatory Compliance And Cybersecurity GDPR HIPAA CCPA Etc

Week 5 Regulatory Compliance And Cybersecurity GDPR HIPAA CCPA Etc

00:00
LO1: Describe Key Compliance Concepts Relevant To Cybersecurity Risk Management Privacy Breach Notification Safeguards

00:00
LO2: Map Cybersecurity Risks And Controls To Regulatory Obligations Using Real World Examples

00:00
LO3: Analyze Regulatory Compliance Gaps And Recommend Risk Based Corrective Actions To Reduce Legal And Regulatory Exposure

00:00
Multiple Choice Questions
True/False Questions
Scenario-Based Multiple Choice Questions
Key-Terms and Concepts Questions
Short Answer Questions (copy) (copy) (copy) (copy)

Week 6: Incident Response And Risk Management

Week 6 Incident Response And Risk Management

00:00
LO1: Explain How Incident Response Planning And Execution Reduce Cybersecurity Risk And Organizational Impact

00:00
LO2: Analyze Incident Response Activities Preparation Detection Containment Recovery Through A Risk Lens

00:00
LO3: Evaluate Incident Response Effectiveness And Integrate Lessons Learned Into Ongoing Cybersecurity Risk Management

00:00
Multiple Choice Questions
True/False Questions
Scenario-Based Multiple Choice Questions
Key-Terms and Concepts Questions
Short Answer Questions

Week 7: Business Continuity And Disaster Recovery

Week 7 Business Continuity And Disaster Recovery

00:00
LO1: Explain The Relationship Between Cybersecurity Risk Business Continuity And Disaster Recovery

00:00
LO2: Identify Critical Business Functions And Assess How Cyber Incidents Affect Availability And Operations

00:00
LO3: Develop Business Continuity And Disaster Recovery Strategies That Address Cyber Risks And Support Organizational Resilience

00:00
Multiple Choice Questions
True/False Questions
Scenario-Based Multiple Choice Questions
Key-Terms and Concepts Questions
Short Answer Questions

Week 8: Midterm Test Or Assignment

Week 9: Integrating Cybersecurity Into Corporate Governance

Week 9 Integrating Cybersecurity Into Corporate Governance

00:00
LO1: Explain Governance Roles Of Boards Executives And Leadership In Cybersecurity Risk Oversight

00:00
LO2: Analyze How Policies Accountability And Risk Appetite Guide Cybersecurity Decision Making

00:00
LO3: Evaluate Corporate Governance Mechanisms That Integrate Cybersecurity Risk Into Enterprise Risk Management

00:00
Multiple Choice Questions
True/False Questions
Scenario-Based Multiple Choice Question
Key Term & Concept Questions
Short Answer Questions

Week 10: Risk Communication And Reporting

Week 10 Risk Communication And Reporting

00:00
LO1: Explain Best Practices For Communicating Cybersecurity Risk To Technical And Non Technical Stakeholders

00:00
LO2: Create A Risk Report Using Clear Metrics Risk Ratings Heat Maps Key Risk Indicators And Actionable Recommendations

00:00
LO3: Assess The Effectiveness Of Cybersecurity Risk Reports In Supporting Executive Decision Making

00:00
Multiple-Choice Questions
True False Questions
Scenario-Based Multiple Choice Questions
Key Term & Concept Questions
Short Answer Questions

Week 11: Emerging Cybersecurity Risks IoT AI Etc

Week 11 Emerging Cybersecurity Risks IoT AI

00:00
LO1: Describe Emerging Technologies Internet Of Things Artificial Intelligence And The Cybersecurity Risks They Introduce

00:00
LO2: Analyze Threat Scenarios Involving Emerging Technologies And Assess Likely Organizational Impacts

00:00
LO3: Propose Risk Management And Governance Strategies To Address Emerging Cybersecurity Threats

00:00
Multiple-Choice Questions
True/False Questions
Scenario Based Multiple Choice Questions
Key Term & Concept Questions
Short Answer Questions

Week 12: Cybersecurity Risk Management In The Supply Chain

Week 12 Cybersecurity Risk Management In The Supply Chain

00:00
LO1: Explain Third Party And Supply Chain Risk Concepts Including Shared Responsibility And Dependency Risk

00:00
LO2: Assess Vendor Risks Using Criteria Such As Data Exposure Access Level Criticality And Control Maturity

00:00
LO3: Develop Third Party Risk Mitigation Strategies That Reduce Supply Chain Cybersecurity Exposure

00:00
Multiple Choice Questions
True / False Questions
Scenario-Based Multiple Choice Questions
Key Term & Concept Questions
Short Answer Questions

Week 13: Ethical Issues In Cybersecurity Risk Management

Week 13 Ethical Issues In Cybersecurity Risk Management

00:00
LO1: Describe Ethical Dilemmas In Cybersecurity Risk Decisions Privacy Versus Security Monitoring And Disclosure

00:00
LO2: Analyze Case Studies To Identify Ethical Risks And Stakeholder Impacts

00:00
LO3: Evaluate Cybersecurity Risk Decisions And Recommend Ethically Responsible Courses Of Action

00:00
Multiple Choice Questions
True / False Questions
Scenario-Based Multiple Choice Questions
Key Term & Concept Questions
Short Answer Questions

Week 14: Recent Trends In Cybersecurity Risk Management

Week 14 Recent Trends In Cybersecurity Risk Management

00:00
LO1: Identify Current Trends And Evolving Challenges In Cybersecurity Risk Management

00:00
LO2: Evaluate How Industry Practices Are Adapting To New Threat Landscapes And Organizational Needs

00:00
LO3: Critically Assess Emerging Cybersecurity Risk Management Practices To Improve Organizational Strategy

00:00
Multiple Choice Questions
True / False Questions
Scenario Based Multiple Choice Questions
Key Term & Concept Questions
Short Answer Questions

Week 15: Review And Open Problems In Cybersecurity Risk Management

Week 15 Review And Open Problems In Cybersecurity Risk Management

00:00
LO1: Synthesize Course Concepts Into A Unified Cybersecurity Risk Management Approach

00:00
LO2: Analyze Unresolved And Open Problems In Cybersecurity Risk Management And Their Organizational Implications

00:00
LO3: Design A Comprehensive Cybersecurity Risk Management Framework Addressing Current And Future Challenges

00:00
Multiple Choice Questions
True / False Questions
Scenario Based Multiple Choice Questions
Key Term & Concept Questions
Short Answer Questions

About Course

What Will You Learn?

Course Content

Week 1: Introduction To Cybersecurity Risk Management

Week 1 Introduction To Cybersecurity Risk Management

LO1: Define Cybersecurity Risk Management And Explain Its Importance In Modern Organizations

LO2: Describe Core Risk Concepts Threats Vulnerabilities Likelihood Impact Risk Appetite In A Cybersecurity Context

LO3: Analyze How Core Cybersecurity Risk Concepts Support Organizational Objectives And Inform Strategic Decision Making

Multiple Choice Questions

True/False Questions

Scenario-Based Multiple Choice Questions

Key-Terms and Concepts Questions

Short Answer Questions

Written Assignment

Presentation Task

Role-Playing Activity

Peer Review Task

Exercises and Activities Adaptation

Week 2: Risk Assessment Frameworks NIST CSF ISO IEC 27005 Others

Week 2: Risk Assessment Frameworks NIST CSF ISO IEC 27005 Others

LO1: Compare Major Risk Assessment Frameworks NIST CSF ISO IEC 27005 Based On Structure Purpose And Applicability

LO2: Apply A Selected Framework To Outline Key Steps In Conducting A Cybersecurity Risk Assessment

LO3: Evaluate And Justify The Selection Of An Appropriate Risk Assessment Framework For A Given Organizational Context

Multiple Choice Questions

True/False Questions (copy)

Scenario-Based Multiple Choice Questions (copy)

Key-Terms and Concepts Questions (copy)

Short Answer Questions (copy)

Written Assignment

Presentation Task

Role-Playing Activity

Peer Review Task

Exercises and Activities Adaptation

Week 3: Identifying And Assessing Cybersecurity Threats

Week 3 Identifying And Assessing Cybersecurity Threats

LO1: Explain Threat Modeling Concepts And Identify Common Threat Sources And Attack Vectors

LO2: Conduct A Basic Vulnerability Assessment And Relate Vulnerabilities To Potential Threat Exploitation Paths

LO3: Analyze And Prioritize Cybersecurity Risks By Correlating Threat Sources Vulnerabilities And Potential Impacts

Multiple Choice Questions

True/False Questions

Scenario-Based Multiple Choice Questions

Key-Terms and Concepts Questions

Short Answer Questions

Week 4: Developing Risk Mitigation Strategies Avoid Transfer Mitigate Accept

Week 4 Developing Risk Mitigation Strategies Avoid Transfer Mitigate Accept

LO1: Differentiate Risk Treatment Options Avoidance Transfer Mitigation And Acceptance

LO2: Propose Appropriate Controls And Treatments For Prioritized Risks Based On Organizational Constraints

LO3: Design A Risk Treatment Plan That Balances Risk Treatment Options Organizational Constraints And Residual Risk

Multiple Choice Questions

True/False Questions

Scenario-Based Multiple Choice Questions

Key-Terms and Concepts Questions

Short Answer Questions

Week 5: Regulatory Compliance And Cybersecurity GDPR HIPAA CCPA Etc

Week 5 Regulatory Compliance And Cybersecurity GDPR HIPAA CCPA Etc

LO1: Describe Key Compliance Concepts Relevant To Cybersecurity Risk Management Privacy Breach Notification Safeguards

LO2: Map Cybersecurity Risks And Controls To Regulatory Obligations Using Real World Examples

LO3: Analyze Regulatory Compliance Gaps And Recommend Risk Based Corrective Actions To Reduce Legal And Regulatory Exposure

Multiple Choice Questions

True/False Questions

Scenario-Based Multiple Choice Questions

Key-Terms and Concepts Questions

Short Answer Questions (copy) (copy) (copy) (copy)

Week 6: Incident Response And Risk Management

Week 6 Incident Response And Risk Management

LO1: Explain How Incident Response Planning And Execution Reduce Cybersecurity Risk And Organizational Impact

LO2: Analyze Incident Response Activities Preparation Detection Containment Recovery Through A Risk Lens

LO3: Evaluate Incident Response Effectiveness And Integrate Lessons Learned Into Ongoing Cybersecurity Risk Management

Multiple Choice Questions

True/False Questions

Scenario-Based Multiple Choice Questions

Key-Terms and Concepts Questions

Short Answer Questions

Week 7: Business Continuity And Disaster Recovery

Week 7 Business Continuity And Disaster Recovery

LO1: Explain The Relationship Between Cybersecurity Risk Business Continuity And Disaster Recovery

LO2: Identify Critical Business Functions And Assess How Cyber Incidents Affect Availability And Operations

LO3: Develop Business Continuity And Disaster Recovery Strategies That Address Cyber Risks And Support Organizational Resilience

Multiple Choice Questions

True/False Questions