CT6004 - Network Security (CISCO) (2019/20)
|Module specification||Module approved to run in 2019/20|
|Module title||Network Security (CISCO)|
|Module level||Honours (06)|
|Credit rating for module||30|
|School||School of Computing and Digital Media|
|Total study hours||300|
|Running in 2019/20||
This module is based on Cisco CCNA Security curriculum delivered through Cisco Networking Academy at the University.
This module provides a next step for individuals who want to enhance their CCNA-level skillset and help meet the growing demand for network security professionals. The curriculum provides an introduction to the core security concepts and skills needed for the installation, troubleshooting, and monitoring of network devices to maintain the integrity, confidentiality, and availability of data and devices. This module helps prepare students for entry-level security career opportunities and the globally recognized Cisco CCNA Security certification.
This module is a hands-on, career-oriented e-learning solution with an emphasis on practical experience to help students develop specialized security skills, along with critical thinking and complex problem solving skills. It offers a blended curriculum with both online and classroom learning. To pass this module with good grades, students are expected to have CCNA-level networking concepts knowledge and skills, along with basic PC and Internet navigation skills. The module aims:
1. To provide a firm understanding of Security Policy design and management.
2. To introduce students to security technologies, products and solutions.
3. To provide students with practical experience of configuring firewalls and router security
4. To discuss VPN implementation using routers and firewalls
5. To introduce concepts of Intrusion Detection
6. To explain the implementation of AAA (Authentication, Authorisation and Accounting)
Prior learning requirements
CT5004 or CT5005 Completed
Overview of Network Security, Basic Router and Switch Security, Router ACLs and CBAC, Router AAA Security, Router Intrusion Detection, Monitoring and Management, Router Site-to-site VPN, Router Remote Access VPN and Cisco Adaptive Security Appliance (ASA)
Balance of independent study and scheduled teaching activity
Module is delivered once a weekly in three hours session. Usually one hour lecture is followed by two hours of laboratory work. This module is based on CCNA Security curriculum. Industry approved up to date learning material is available to students on www.Netacad.com and via WebLearn links. Students keep a logbook and record the summary of their practical work for reflective learning. On-line chapter tests are incorporated for self-paced continuous assessment and reflective learning.
On successful completion of this module students will be able to:
LO1. Explain network security terminology, and security vulnerabilities,
LO2. Understand and evaluate network security policies in a complex network,
LO3. Mitigate various network attacks to insure safety of the network users,
LO4. Configure and monitor a firewall, analyse the output and adapt, develop and implement mitigation techniques,
LO5. Implement various security features such as AAA and IDS using Cisco routers,
LO6. Systematic approach to design, evaluate and troubleshoot a secure network demonstrating professional commitment;
LO7. Work effectively and responsibly in a small team to build a network and apply security features by configuring various security commands, communicate effectively, keep record of technical findings, group discussions and engineering processes for critical reflection and appraisal
The module is assessed by formative and summative assessments as below:
Diagnostic Test (LO1):
This test is conducted by week 4. The test is designed to check student’s understanding of very basic network security concepts and to provide an early feedback mechanism for maximising student’s engagement within the module
End of Chapter Tests, (LO1 and LO2):
Students are assessed through closed Book On-line Multiple Choice Multiple Answers end of chapter tests regularly for continuous assessment and feedback.
Unseen Theory Examination, (LO2 to LO5):
This exam is to assess the theory aspect of the subjects that students learnt during both autumn and spring semesters.
Unseen Practical Examination, (LO3 to LO7):
The purpose of this practical exam to assess students on the networking security concepts. Students are expected to configure networking security commands, configure Firewall and IDS and perform basic troubleshooting. Students’ are encouraged to keep a logbook which is given a due consideration under this component.
There is one formative assessment and three summative assessments. The formative assessments are multiple choice and single or multiple answers. Summative assessment is end of chapter tests, unseen theory and practical exams. The performances of the individual students are automatically compiled and available to the instructor to evaluate student’s performance in the module.
The marks with constructive comments/feedback are provided students inline with University’s guidelines on assessments and feedback.
Catherine Paquet, (2013), Implementing Cisco IOS network security (IINS): foundation learning guide, ISBN 1587142724, 9781587142727