CT6004 - Network Security (CISCO) (2018/19)
|Module specification||Module approved to run in 2018/19|
|Module title||Network Security (CISCO)|
|Module level||Honours (06)|
|Credit rating for module||30|
|School||School of Computing and Digital Media|
|Total study hours||300|
|Running in 2018/19||
This module is based on Cisco CCNA Security curriculum delivered through Cisco Networking Academy at the University.
This module provides a next step for individuals who want to enhance their CCNA-level skillset and help meet the growing demand for network security professionals. The curriculum provides an introduction to the core security concepts and skills needed for the installation, troubleshooting, and monitoring of network devices to maintain the integrity, confidentiality, and availability of data and devices. This module helps prepare students for entry-level security career opportunities and the globally recognized Cisco CCNA Security certification.
This module is a hands-on, career-oriented e-learning solution with an emphasis on practical experience to help students develop specialized security skills, along with critical thinking and complex problem solving skills. It offers a blended curriculum with both online and classroom learning. To pass this module with good grades, students are expected to have CCNA-level networking concepts knowledge and skills, along with basic PC and Internet navigation skills. The module aims:
1. To provide a firm understanding of Security Policy design and management.
2. To introduce students to security technologies, products and solutions.
3. To provide students with practical experience of configuring firewalls and router security
4. To discuss VPN implementation using routers and firewalls
5. To introduce concepts of Intrusion Detection
6. To explain the implementation of AAA (Authentication, Authorisation and Accounting)
Prior learning requirements
Overview of Network Security, Basic Router and Switch Security, Router ACLs and CBAC, Router AAA Security, Router Intrusion Detection, Monitoring and Management, Router Site-to-site VPN, Router, Router Remote Access VPN and Cisco Adaptive Security Appliance (ASA) LO1,LO2,LO3,LO4,LO5,LO6,LO7
Balance of independent study and scheduled teaching activity
Module is delivered once a weekly in three hours session. Usually one hour lecture is followed by two hours of laboratory work. This module is based on CCNA Security curriculum. Industry approved up to date learning material is available to students on Netacad via WebLearn links. Students keep a logbook and record the summary of their practical work for reflective learning. On-line chapter tests are incorporated for self-paced continuous assessment and reflective learning.
On successful completion of this module students will be able to:
LO1. Explain network security terminology, and security vulnerabilities,
LO2. Understand and evaluate network security policies in a complex network,
LO3. Mitigate various network attacks to insure safety of the network users,
LO4. Configure and monitor a firewall, analyse the output and adapt, develop and implement mitigation techniques,
LO5. Implement various security features such as AAA and IDS using Cisco routers,
LO6. Systematic approach to design, evaluate and troubleshoot a secure network.
LO7. Work effectively in a small team to build a network and apply security features by configuring various security commands.
The module is assessed by a number of formative and summative assessments as detailed below:
Formative assessment: Pretest Exam, (LO1)
This exam will be given at week 2 and need to be submitted at week 4. The exam test student understanding of very basic network security concepts and to provide an early feedback mechanism for maximising student’s engagement within the module
Summative Assessment: End of Chapter Tests, (LO1 and LO2)
Students are assessed through closed Book On-line Multiple Choice Multiple Answers end of chapter tests
Summative Assessment: Final Theory Examination, (LO2 to LO5)
This exam is to assess the theory aspect of the subjects that students learnt during the spring semester.
Summative Assessment: Final Practical Exam, (LO3 to LO7)
The purpose of this practical exam to assess students on the networking security concepts. Students are expected to configure networking security commands, configure Firewall and IDS and perform basic troubleshooting. The mark with detailed feedback will be returned to all students upon completion of the exam.
There are one formative assessments and 3 summative assessments. The formative assessments are multiple choice and single or multiple answers. Summative assessment is end of chapter tests, Final theory and practical exams. All assessments are specially designed to provide an opportunity to monitor student’s progress in the modules as well as providing comprehensive feedback at the end of each test/exam. The performances of the individual students are automatically compiled and available to the instructor to evaluate student’s performance in the module.
Comprehensive feedback is also given to every student after formative and summative assessments by the instructors.
Core Text: All course material is available on-line for registered students on http://netacad.com with usernames and password
1. Vance Pratt, CCNA Security
2. Aaron Woland and Jamey Heary, Cisco ISE for BYOD and Secure Unified Access
3. Omar Santos, Cisco Next-Generation Security Solutions: All-in-One Cisco ASA FirePOWER Services, NGIPS, and AMP
4. Don R. Crawley, Cisco ASA for Accidental Administrators: An Illustrated Step-by-Step ASA Learning and Configuration Guide
Social Media Sources: