MASTER OF SCIENCE IN INFORMATION ASSURANCE

TABLE OF CONTENTS
Directors Message Program Overview Industry Overview Seminar Descriptions Residency Faculty Online Learning 1 2 4 5-7 8 10 - 12 14

A Week in the Life of a Student 16 Ongoing Support Admission to Norwich Frequently Asked Questions Norwich University 18 20 22 24

MESSAGE FROM THE PROGRAM DIRECTOR

Back in the 60's, information assurance meant little more than controlling access to the computer room. Then the Internet changed everything. Now a hacker can attack an organization's information resources from anywhere in the world. A disgruntled employee can download a gigabyte of company data onto a flash drive smaller than a salt shaker and walk out with it in his or h er pocket. Today we are seeing more and more high profile data loss cases in the news, and securing an organization's information assets has become a critical business process. Information assurance (IA) professionals are in high demand, and studies indicate that the demand will continue to grow in the coming years. This field has a bright future. The increased need for information assurance has also come with increased demands on practitioners. The information assurance professional has to worry not only about securing an organization's proprietary information, but securing customer and employee information as well. The IA professional must understand the new regulatory environment created by HIPAA and the Sarbanes-Oxley Act, as well as computer crime and business continuity principles. The greatest need is not for technical skills, but rather the management skills necessary to implement an organizationwide information assurance program. This means working with a variety of constituencies outside of the IA field. Information assurance is more about people than about technology, and the profession needs individuals who understand the policies, procedures, and overall structure of an information assurance program. Organizational behavior is as important to security as technology is. Norwich University created the Master of Science in Information Assurance program to fill the need for professionals who understand the management of information assurance and how IA supports and advances business needs. We prepare students to enter upper management positions and implement information assurance principles across all areas of an organization. In 1819, Norwich University was founded on the belief that real learning requires the immediate application of concepts to practice, and modern education research has proven this theory. We meld theory and practice through our unique case study system whereby students use their own organization as an ongoing case study of the principles that they learn in their classes. Apply what you learn by e xamining how those principles apply to your organization and then make recommendations for improvement. Many of our students have been promoted as a result of their case study before even completing the program, and others have used it to enter consulting. Join our community of instructors and students all professionals or future professionals in the field as we explore this growing profession. Sincerely,

John Orlando, PhD Program Director, Master of Science in Information Assurance Norwich University

Our MSIA program director is John Orlando. Dr. Orlando received his PhD from the University of Wisconsin, and has since published articles and presented lectures in a variety of topics related to information assurance. In particular, he has published on ethical issues in information assurance in venues such as the Network World Security Strategies newsletter. He has led the development of online programs at the University of Vermont and Norwich University, and has published articles on the development of high quality distance education courses.

PROGRAM OVERVIEW
INFORMATION ASSURANCE FROM A MANAGEMENT PERSPECTIVE
Program Mission The Master of Science in Information Assurance (MSIA) program provides students with a comprehensive exploration of the information security life cycle and its growing importance to an organization in achieving its strategic and tactical objectives. The knowledge and skills students gain from the program will enhance their capability as information security practitioners; will support their growth toward upper management and executive positions such as chief information security officer (CISOs) and chief risk managers; and will enable them to promote best practices through effective communication with C-level executives. Learning Outcomes Graduates demonstrate mastery of: the fundamental attributes of information that must be protected; technical defenses; human factors supporting technical defenses; detection and response technologies and processes; policy development and implementation; ethical issues in information security; and the tools necessary to integrate security into the corporate culture. Graduates are competent to assume leadership in information assurance. Graduates demonstrate an interdisciplinary and comprehensive view of information assurance as a contributor to the strategic goals of their organization. Graduates speak the language of management. They can bring together elements from throughout the organization for successful analysis, planning, and implementation of reasonable and cost-effective security architectures. Graduates are able to communicate with both technical staff and C-level executives. Graduates are service oriented and demonstrate skills needed to work effectively with th e client base.
2

Graduates understand the technology underlying security and information assurance Unlike many graduate level information security programs which focus on software and technology-based issues, Norwichs Master of Science in Information Assurance (MSIA) curriculum concentrates on the business demands and management challenges that security practitioners face. You will fully master the policies, procedures, and structure of an organization-wide information security program, gaining expertise in both theory and practice as you develop skills that will be imm ediately applicable to your present employment. The MSIA coursework focuses on the integration of information security technologies with the business problems and opportunities of the real world your own workplace. Graduates of the program are prepared to assume professional management responsibilities such as those of Chief Security Officers, Security Administrators and Chief Information Security Officers. The National Security Agency and Department of Homeland Security have designated Norwich University as a Center for Academic Excellence in Information Assurance Education. This prestigious evaluation is based on stringent criteria and review, judged according to the standards and guidelines set by the Committee on National Security Systems. The seminars follow the life cycle of information assurance, moving from issues of hardware and software infrastructure to those of policy and governance. The curriculum mirrors the security professionals actual work experience, which is not fixed in one area of the organization, but which spans departments and organizational structures. The curriculum is developed by PhDs and taught by leaders in the field people who continue to make a difference. These professionals use their expertise and experience as teaching tools.

LETTER FROM A GRADUATE

Dear Dr. Kabay, I thought that I would take the time to inform prospective students of the challenges and rewards of the MSIA program. If security professionals are looking for a program that challenges them, both professionally and personally, then this is the pr ogram for them. The MSIA program is not for the weak at heart or for those people who are not ready to accept a challenge. The MSIA program requires a considerable amount of time and effort each week, from the weekly discussions, readings, and case studies to the two quizzes and the term paper due each seminar . I personally did not choose this pr ogram because I thought it was easy, I chose it for the challenge and distinction o ffered by Norwich. I certainly received the challenge and I am no w honored to have received the graduate distinction offered by Norwich University. I got far more than just a degree, I formed lifelong connections and friendships that the Residenc y at Norwich solidified, as no other program which I know of can offer. I feel that it is necessary to tell e veryone who is considering the program that the Norwich experience is one that follows the Norwich Mission Statement, which is , Norwich University will be a learning community, American in character yet global in perspective, engaged in personal and intellectual transformation and dedicated to knowledge, mutual respect, creativity, and service. I can only believe that by completing the MSIA program at Norwich University, each student will receive the training needed to make a difference for the future of Information Assurance and the distinct honor and pride o f becoming a graduate of Norwich University. Live by the Norwich motto of I will try and ther e is nowhere that this program will not take you. Sincerely, Shawn King MSIA 06

The Master of Science in Information Assurance program is structured as follows: Four start dates per year: March, June, September, and December Six 11-week seminars of six credits each Coursework for the six MSIA seminars can be completed in 18 months Case Study Project threaded throughout the program directly relates concepts of information assurance to your workplace or your in dustry Online, highly experiential, asynchronous curricular activities including discussions, reading, writing, and workplace-oriented assignment Small classes (not more than 16 students) ensure that you receive individualized attention from your instructor and build strong, lasting relationships with your classmates The real world of information assurance rarely allows the separation of technical and management issues especially in the higher echelons of management therefore these issues are rarely treated separately within this curriculum. Since you will not only be reviewing case studies but interviewing working professionals, relevant and up-to-date solutions to current and future job challenges will always be at your fingertips. Within 18 to 24 months of your starting date you will finish the coursework (including the one-week Residency) and graduate with the same traditional Norwich diploma received by on-campus students. Upon graduation you will join the ranks of distinguished Norwich University alumni and become a member of a vibrant worldwide network of fellow Norwich graduates.

INDUSTRY OVERVIEW

In addition to IT skills and technical knowledge, you must gain knowledge of and experience with management best practices and business-related skills if you wish to have a successful career and reach the executive level. Proficiencies such as communications skills and an understanding of policy, processes, and personnel are crucial. Norwich's MSIA focuses on business and management concepts as they apply to the information assurance field. If you wish to build on your techni cal competency to transition into or further your career, the MSIA provides an important credential and a dynamic skill set that is r espected throughout the information security community.

Physical security giving physical access to systems solely to those who need it Risk, response, and recovery processes to identify, measure, and control loss Security architecture and models building the security infrastructure for a complex organization Security management identification of information assets and development of policies and procedures Telecommunications and network security ensure security through remote access management, network availability, firewall architecures,VPNs, Data Networking, LAN Devices, etc.

Areas of expertise within information security: Access control systems and methodology how people enter and leave the system Applications and systems development security creating new computer programs to protect an organization Auditing and monitoring collecting information for identification and response to security breaches Business continuity planning (BCP) and disaster recovery planning (DRP) uninterrupted access to critical data systems Cryptography the coding and decoding of data and messages Data communications what is necessary to operate communications networks Law investigation and ethics computer crime laws and regulations Malicious code counter measures and prevention techniques for dealing with viruses, worms, and other forms of deviant code Operations security setting identity controls, auditing and monitor the mechanisms and tools

Typical job titles: Security auditor Security specialist Security consultant Security administrator Security analyst/engineer Director/manager of security Chief security officer (CSO)/chief information security officer (CISO) Typical industries: Professional services (real estate, legal, and engineering) Government (national, state, and local) Telecommunications Banking and other finance-related industries Manufacturing Healthcare Education Insurance

Text for Industry Overview Copyright 2005 (ISC)2, Inc., www.isc2.org. All rights reserved.

SEMINAR DESCRIPTIONS
ACQUIRE THE KNOWLEDGE TO ACHIEVE DISTINCTION
The MSIA program is a 36-credit degree comprised of six, eleven-week seminars of six credits each. Each seminar introduces you to the most critical and relevant areas in information assurance today, and creates context for the ones that follow; seminars must be taken in the order presented. The third semester offers concentrations to allow you to pursue areas of individual interest.

Semester 1
Seminar 1: Foundations & Historical Underpinnings of Information Assurance The first seminar provides a discourse on the core foundations of information assurance. A survey seminar, Seminar 1 discusses where the discipline of information assurance came from, what it is comprised o f, and what we mean by key elements such as architecture, cryptography, computer-related crime, privacy, security standards and regulatory requirements. It relates information assurance elements to foundational and current computer security models in a practical manner that makes the connection between theory and practice. Seminar 1 prepares the student for a deeper understanding of information assurance technology, human factors in information assurance, risk management, management issues and analytics/metrics. (6 credit hours) Seminar 2: Information Assurance Technology This seminar focuses on the technologies in use for information assurance in all types of organizations. Since architecture is the foundation for all information assurance technology, the seminar begins with a discussion of the development and roles of security architecture in the enterprise. Along with an exploration of security architecture, the interactions between security and network architectures is a key feature of the seminar. Operating systems, cryptography, monitoring systems and perimeter defenses all come together in a variety of technical applications. Those applications include malware detection, identification and authentication. The seminar discusses the technical interactions in an information assurance environment and ends with a discussion of incident management. (6 credit hours)

Semester 2
Seminar 3: Human Factors and Managing Risk This seminar takes up the related subjects of human factors and managing information systems risk. Information assurance is generally considered as a people problem as much as it is a techni cal problem. Risk in information systems is heavily influenced by human factors. In recognition of that connection, this seminar addresses operations security, awareness, ethics and applications of social psychology. Coupled with these are principles of risk management including two contrasting risk analysis methodologies as well as an overvi ew of other lesser methodologies, employment practices and policies. Understanding the convergences between policy, human factors and risk management methodologies leads to practical application of information assurance in the organization. (6 credit hours) Seminar 4: Information Assurance Management and Analytics The final core seminar ties the first three seminars together by discussing the overall techniques of information assurance management, leadership and analytics. Analytics are important and powerful management tools so these topics are covered from the perspectives of measuring both business and technical performance. Application of analytics to the management process supports problem solving, management and decision-making processes. Project management adds to the smooth execution of IA projects. Management and leadership are distinctly different disciplines and this seminar handles them as such. Finally, selling security to management and constituents often is a challenge and this seminar addresses that directly. (6 credit hours)

Semester 3
To allow you to tailor your ed ucation to your own professional goals, concentration choices are available for your fifth and sixth seminar. You can customize your degree with one of the following two concentrations: Concentration 1: Managing Cyber Crime and Digital Incidents In this concentration you will develop a dual perspective on cyber crime and digital incident response. You begin by studying computer security incident response team management: creating a response team that meets an organizations needs; identifying functionality and service levels; using triage to categorize incidents and respond appropriately; staffing the team and avoiding team burnout; and conducting postmortem analysis leading to process improvement. The second part of this concentration examines cyber forensic investigations. This will enhance your core competencies in investigative work by providing a deeper understanding of investigative skills, creating and managing a forensics team, and intensifying your ability to analyze and report on investigative outcomes. You will develop your expertise in responding to legal and policy issues during an investigation and interacting with the appropriate authorities. In the Managing Cyber Crime and Digital Incidents concentration, you will take the following two seminars: Seminar 5: Computer Security Incident Response Team Management This seminar summarizes the key points in creating and managing a computer incident response team (CSIRT), also known as a computer emergency response team (CSIRT). Main topic areas include creating the CSIRT, responding to computer emergencies, Managing the CSIRT, and continuous process improvement. (6 credit hours) Seminar 6: Cyber Forensic Investigations This customization covers the investigation of digital incidents such as electronic fraud, cyber crime and cyber terror. Topics include types and characteristics of digital incidents, management of digital evidence, investigative techniques, the difference between digital investigation and traditional investigation, investigative and forensic tools and techniques, computer, network and software forensics, human factors in digital crime, and presenting conclusions. (6 credit hours)

Concentration 2: Business Continuity Management This concentration teaches you how to develop a resilient organization. You will gain both knowledge of emergency preparation and disaster response and the management and leadership skills needed to affect organizational change and develop risk management processes across your enterprise. You will acquire the skills for managing a business continuity program from organizational analysis and plan development, to implementation and response. In the Business Continuity Management concentration, you will take the following two seminars: Seminar 5: Foundations of Business Continuity Management This seminar introduces students to the field of business continuity management with an emphasis on the steps needed to develop a business continuity plan and risk management program. Students will learn about the functions and goals of a business continuity manager and experience first-hand the challenges of developing a continuity plan. Weekly sessions target the major steps in plan development such as project initiation, risk and business impact analysis, risk mitigation and control strategy development and implementation, response strategies, plan testing, as well as the organizational structure needed to sustain a continuity program over time. (6 credit hours) Seminar 6: Principles of Incident Response and Emergency Management This seminar teaches how to develop a plan for responding to a business disruption. Topics will include response procedures, notification, communication, and event management. Students will also learn how to manage public perceptions, and work with outside agencies and public sector emergency responders during and after an incident. (6 credit hours)

Case Study (Semester 1 & 2) Move from theory to practice through our unique case study program. You will obtain permission from an organization to study its security practices or you may select an industry as a subject for research on broader security practices. Most students choosing an organization-based case study will request permission from their employer, but many have successfully pursued case studies with other organizations. You will follow your case study through the first four seminars of the program. In each seminar you will analyze the impact of security requirements and practices on your case study subject. At the end of each seminar you will create an extensive report evaluating your chosen security environment and propose recommendations for improvement and increased security effectiveness. These four reports will provide you with invaluable data and help you establish yourself as a security lead er. For more information regarding the case study, please visit www.msia.norwich.edu/case-study.php.

Alumni, Traci Peck, Adam Goldstein, Doris Locking (top to bottom), Residency 2006.

RESIDENCY
EXPERIENCE ACADEMIC CHALLENGE; BUILD LASTING CONNECTIONS

Your coursework in the crystallizes in dynamic intellectual activities and valuable networking opportunities through the week-long Residency in June. The Residency is truly the culminating experience as you meet face-to-face with your classmates, instructors, and Graduate School staff. We will keep you busy with intense academic activities in which you will demonstrate how your learning and experience over the six seminars has made you an effective thinker, communicator, and leader. You will participate with your classmates in activities that may include debates, lectures, paper and capstone presentations, an industry-specific professional conference, case-study field trips, or professional panels and roundtable discussions. The academic focus will be challenging, but richly rewarding. Your Residency experience also provides the perfect opportunity for you to connect physically with the campus you have known only virtually for 18 months. June is a spectacularly beautiful time of year to visit our histori c campus nestled in the Green Mountains of Vermont. Many students bring their families along and make their stay at Norwich a launching pad for a relaxing family vacation in New England.

The entire Residency experience is all about you. I t centers around your learning, your cohort, and your achievements. You will have plenty of time to engage and converse with your instructors. Your cohort will spend time connecting professionally and personally, cementing lifelong friendships and business acquaintances. Your bond to the larger Norwich alumni family will be inaugurated with networking socials and business card exchanges. You will relax with new friends and experience camaraderie at its finest. Finally, the Residency week is crowned by a formal graduation ceremony complete with masters hooding. This is a tim e of celebration for you and your family so we strongly encourage families to attend. After all, attaining a masters degree takes sacrifice, dedication, and commitment. Earning your masters degree at Norwich University is a mark of distinction, an achievement we want you to share!

March Start Date Students Be sure to ask your A dmissions Advisor about our Accelerated Residency.

Gordon Reynolds, Alumnus, School of Graduate and Continuing Studies

Residency was one of the better experiences of my life. I finally had the opportunity to come f ace-to-face with the people I had been w orking with for such a long period o f time. It was invaluable and something I will always remember. The entire Residency experience has brought us closer together and Im v ery sure that I will stay in contact with the majority of people. In fact Ive made some business acquaintances and I have acquired some work out of it, making it a v ery good networking place.
8

Stephen Vantine and Dana Phares, class of 2003. Virtual classmateslifelong friends.

Dana Phares, Alumnus, School of Graduate and Continuing Studies

Norwich has provided me with new tools and the e xperience needed to tackle comple x business issues. However, the camaraderie and interaction were the best part of the program working closely together and helping each other learn to cope with today s changing environment.

FACULTY
PROFESSIONAL FACULTY GUIDE AND MENTOR EACH STUDENT
Academic achievement Norwich University has long been an institution built on educational innovation, an innovation reflected in the creativity and accomplishments of our faculty. Bringing a wealth of experience to their teaching, they mentor students with insight and depth about the variety of fields related to the curriculum. You will be learning from some of the best and brightest professors from across the nation. Faculty excellence Norwich University faculty excel in engaging students in the online learning environment. They draw on a range of learning approaches including case studies, lectures, group-work, and real-world projects. Trained to teach online In addition to exemplary experience, education, and knowledge of the field, our faculty have knowledge of online learning, and the online demeanor necessary to be very effective online educators. Faculty are engaged in the classroom and offer quick response time to student questions (24 hours or less), and prompt grading and feedback on assignments (72 hours or less). This level of engagement translates into a positive, supportive, and rewarding learning experience. The following is a partial faculty list. Please contact an Admissions Advisor for additional information about our faculty. Michel E, Kabay, PhD, CISSP-ISSMP Author of over 850 articles on operations management and information assurance since 1986. Dr. Kabay is wellknown in the information assurance field for his twiceweekly publication of the Security Management Newsletter distributed by Network World (see archives). He served as technical editor for the Computer Security Handbook, 4th Edition published by Wiley in April, 2002 an d which was used as the core text for the MSIA program from September, 2002 to June, 2006. He is currently working on the 5th edition. Dr. Kabay organized the first and second International Conferences on Information Warfare in 1993 and 1995 and has lectured on IWAR at the Pentagon, the US Army War College, NATO HQ, and NATO Counterintelligence School. He was the leader of the International Delegation of Information Security Experts to the People's Republic of China in 1994 and was a member of the working group that defined the Common Body of Knowledge for the (ISC) CISSP exam. Dr. Kabay is a member of the Information Systems Security Association (ISSA) and of the High Technology Crime Investigation Association (HTCIA) and was founding Secretary of the Vermont InfraGard. In December 2004, he was inducted into the Security Hall of Fame of the ISSA. He is a Senior Academic Advisor to the MSIA program. Peter Stephenson, PhD, CISSP, CISM, FICAF Peter Stephenson is a writer, consultant, researcher and lecturer on information assurance and risk, digital investigation and forensics on large-scale computer networks. He has lectured extensively on digital investigation and security and has written or contributed to 14 books and several hundred articles, in major national and international trade, technical and scientific

10

publications. He served as Associate Program Director in the Master of Science in Information Assurance program at Norwich University and is a research professor at the Norwich University Applied Research Institutes. Dr. Stephenson obtained his PhD in computer sci ence at Oxford Brookes University, Oxford, England, where his research was in the structured investigation of digital incidents in complex computing environments. He is on the editorial advisory boards of Computer Fraud and Security, Information Systems Security, International Journal of Digital Evidence, SC Magazine and the Norwich University Journal of Information Assurance, and is the co-chair of the certification committee of the Digital Forensics Certification Board. He has been named editorin-chief of a digital forensics journal published by Taylor and Francis Publishing. He is a Senior Academic Advisor to the MSIA program. Rebecca Herold, MA, CISSP, CISM, CISA, FLMI Rebecca Herold is an independent information privacy, security and compliance consultant, author and instructor. Ms. Herold has over 15 years of privacy and information security experience, and assists organizations of all sizes with their information privacy, security and regulatory compliance programs. She specializes in risk assessment, gap analysis, policy content development, awareness training, strategy development and implementation. She has a BS in M ath and Computer Science and an MA in Computer Sci ence and Education. Rebecca Herold is a Certified Information Systems Security Professional (CISSP), a Certified Information Systems Auditor (CISA), a Certified Information Systems Manager (CISM), and a Fellow of the Life Management Institute (FLMI). She has been a m ember of the Information Systems Audit and Control Association (ISACA) since 1990 and has held all board positions throughout her membership in the Iowa chapter. Ms. Herold is a charter member of the Iowa InfraGard chapter that was f ormed in 2000, and a member of the International Association of Privacy Professionals (IAPP). Ms. Herold was instrumental in building the information security and privacy program while at Principal Financial Group which was awarded the CSI Outstanding Security Program of the Year Award in 1997.

Russell D. Rosco Alumnus, School of Graduate and Continuing Studies

While a Distance Education may not be for everyone, my experience at Norwich, in one word, would have to be Superb. As a professor myself, I found the level of caring and responsive experts that this program has gathered to be the key to the program. The education I received at Norwich was more than just a couple of classes that I managed to finish I w as provided with discipline and improved writing skills that I am now using as a

11

PhD student at Purdue University.

Donald Holden, MBA, CISSP-ISSMP Don Holden has been working in the field of information systems, security, encryption, business continuity and disaster recovery planning for more than 20 years. He is currently affiliated with Concordant, a security consulting company in Massachusetts. Prior to this, he worked for SRI Consulting/AtomicTangerine and Digital/Compaq, developing security policies and practices for major financial institutions such as the Federal Reserve System, New York Mercantile Exchange and Providian. After Digital merged with Compaq, he served as program manager for Compaq's Security Program Office, where he led the Compaq Security Forum that coor dinated the decentralized security engineering, marketing and consulting initiatives across Compaq, Digital, Tandem and Atalla divisions. Some of his recent consulting engagements have included a HIPAA security assessment for a Midwest health insurance corporation and a security training program for employees and customers of a regional bank. Mr. Holden also participated in the writing of the Congressional Corporate Information Security Working Group's, Report on Security Best Pr actices and Metrics, published in January, 2005, as well as th e WEDI/SNIP's, Security Policies and Procedures Whitepaper, (HIPAA). Other publications and presentations include numerous white papers covering subjects ranging from security management to technology issues such as intrusion detection, firewalls, biometric authentication and digital watermarking. Bridgitt Robertson, MSA, MIT Bridgitt Robertson's corporate experience includes working for large global companies in the areas of project management, business analysis and consulting. Most of her work has consisted of being a translator/liaison between technologists and business groups. She has been teaching business and technology courses to grad and undergrad students online for over four years.

Most of her teaching focus has centered on country risk analysis and how to leverage technology across the global IT environment, which can provide a competitive advantage in today's business arena. Ms. Robertson's expertise includes examining threats to today's information assets in the global enterprise, the risks of operating in today's global environment, as well as weighting existing strategies and efforts to neutralize or mitigate risks and enhance competitiveness. Ms. Robertson is currently working on her PhD in Business with a specialization in computer security. She is also a m ember of ISSA and InfraGard. Michael Miora, MA, CISSP-ISSMP Michael Miora, educated at UCLA and UC Berkeley, earning Bachelors and Masters degrees in Mathematics, has designed and assessed secure, survivable, highly robust systems for Industry and Government over the past 25 years. Mr. Miora, one of the original professionals granted the CISSP in the 1990s and the ISSMP in 2004, was accepted as a Fellow o f the Business Continuity Institute (FBCI) in 2005. Mr. Miora founded and currently serves as President of ContingenZ Corporation. As founder of InfoSec Labs (1997-1999), a r ecognized leader in security consulting and related services, Mr. Miora managed consulting services and programs for major companies and has performed Information security, continuity and privacy assessments for companies across a variety of industry sectors. InfoSec Labs was acquired by Rainbow Technologies (RNBO) in 1999; Mr. Miora then served as Vice President for Rainbow, managing its security consulting services from 1999 to 2001. Mr. Miora is also a co-f ounder of ePrivacy Group, the parent company to TurnTide, the developer of the anti-spam firewall appliance of the same name, acquired in 2004 by Symantec. He also founded and served as the Director of the security consulting organization for the National Computer Security Association (NCSA), now called TruSecure Corporation, helping that organization achieve its status as a major force in the Information Security arena.

12

TITLE

Dr. Michel Kabay and MSIA students, Residency 2006

Octavio Herrera, MSIA Alumnus, 2006

When I started the MSIA pr ogram in the fall of 2004, I never imagined that this step in m y pursuit of lifelong learning would have such an immediate effect on m y career, but thanks to the MSIA program format, every IA term paper Ive submitted to management has pr oduced significant improvements in our information security strategy and captured the attention of our business unit leadership.

ONLINE LEARNING
ONLINE LEARNING ONE STEP BETTER THAN THE TRADITIONAL CLASSROOM
Norwich University has built a leading-edge online learning environment. By using the consistent and integrated efforts of faculty, support staff, administrators, students, and alumni, we have built an onlin e environment that promotes networking, peer-support and one-on-one contact with Norwich faculty. The online learning environment makes traditional classroom learning better and here is how: to 100 online databases, 22,000 full-text electronic journals and tens of thousands of eBooks. In addition, the library provides books in print and journal articles through the Document Delivery service for those resources that are unavailable online. This enables you to do professional and scholarly research without having to leave home. The reference staff provides research assistance through e-mail, phone, and instant messaging and a dedicated Distance Learning Librarian is available to show you how to get the most out of the librarys resources.

Focus is on you, the student With online learning, you are empowered to learn on your own an d even to teach one another. Through the discussion group mode, you have the opportunity to explain, share, comment upon, and critique course materials. But you also g et to learn from experts in the field as your instructor dialogs with and mentors you. Discussion Online discussions are asynchronous. This format affords you extra time to contemplate questions and compose well-crafted responses creating a valuable exchange of ideas and thoughts. Writing The main method of communication in an online course is writing. In an online course, discussions, requests for assistance, assignments, projects and tests are mostly done in written form. Writing is a skill that is indispensable, and here you will hone that skill to its keenest edge. Comprehensive course materials The opportunities available to you through the World Wide Web are endless. With the use of the Internet, you can utilize online libraries and resources when the time is most convenient for you. Access to extensive resources The Kreitzberg Library serves all Norwich University students and faculty, whether online or on-campus. The library currently provides access

Immediate response & feedback Office hours are round-the-clock for an online course. With just a click, you can send questions and requests to professors, program directors, or fellow students and expect to receive feedback within 24 hours. Flexibility Online learning knows no time zones nor is location or distance an issue. Our program is based on an innovative asynchronous learning and delivery model so there is no need to attend real-time instruction. Small class sizes Class sizes are limited to 16 students or less, and are called cohorts. Cohort members progress through the program together and participate in online discussions and other learning activities. The varying background of cohort members brings tremendous value to the learning experience. Networking You will have individualized attention from faculty and develop close relationships with fellow students as you interact with them creating a vast network of professional contacts. You will also have an opportunity to maintain those long-lasting personal and professional relationships.

14

Norwich University, School of Graduate and Continuing Studies, Class of 2006.

Michele Molina, Alumna, School of Graduate and Continuing Studies

The wealth of knowledge and experience shared by the participating professionals alone make this program enriching and unique, however nothing compares to the network of friends you establish across the globe. No traditional classroom setting ever offered as much!

Bonnie Boyd, Alumna, School of Graduate and Continuing Studies

The course of study is engaging and absorbing; the online classr oom is easy to use and facilitates communication and learning. There is potential to do e xtra and reap added benefits. Colleagues are friendly and knowledgeable, and the instructors are excellent. It has been w onderful.

A WEEK IN THE LIFE OF A NORWICH UNIVERSITY GRADUATE STUDENT

Whats the best way to study?

Successful study time cannot be snatched here and there. You need to plan for blocks of uninterrupted time that suit the way you think and the way you manage tasks, at hours when you know you can be pr oductive. Its not easy to describe a typical week, because no two students arrange their studies the same way. However, here are two real-life schedules: Student A prefers doing MSIA work every day (18 hours): SUN: Reads required readings; prepares initial discussion posts; starts outline for weekly paper; writes questions to ask in workplace (3 h ours) MON: Posts initial discussion posts; responds to other discussion posts; begins research for weekly paper (2 hours) TUE: Interviews someone at work place; continues research on paper (3 hours) Student B prefers doing MSIA reading and discussions early, and doing writing later in the week. This student feels the need to do additional research and consequently may spend more than 20 hours per on the program (23 hours).

SUN: (no school work) MON : Reads required readings; writes questions to ask in work place; makes at least one discussion post (3 hours) TUE : Interviews someone in work place; posts/r esponds to discussions; starts basic research for weekly paper (4 hours) WED : Continues research for weekly paper; posts/responds to discussions (3 hours) THU : Starts writing paper; refines research (3 hours) FRI : Check out discussions; works on paper; (5 h ours) SAT : Completes, reviews and submits paper (5 hours) Your study schedule may be like one of these, or it may be different. What is important is to create a study schedule early on. Experience shows that the sooner you have a study routine that you can f ollow faithfully the sooner you will be at ease with th e workload and on your way to success.

WED: Posts to discussions; refines research; works on paper (2 hours) THU: Posts to discussions; works on paper (2 h ours) FRI: SAT: Post to discussions; works on paper (3 h ours) Completes, reviews and submits paper (3 hours)

16

Jason Lyons, MJA Alumnus, Residency 2006.

Jared Reigstad, Alumnus, School of Graduate and Continuing Studies

By choosing an online degree, I was able to work at my own pace and do things on m y own time, whether on nights or w eekends. Norwich University has been involved in online programs for a number of years, so I felt that it had a good under standing of how to provide quality education through an online experience. I was skeptical at first, but as I got more involved in the program, I really found it a great place to learn, and it s effective. Norwich has found a way to provide all the resources necessary for its students and has done so successfully.

ONGOING SUPPORT
ENSURE YOUR SUCCESS
Helping you succeed in the classroom is the goal of every member of the Universitys support team. We are here to help you every step o f the way by providing a support system d edicated to you. Academic Support Faculty to engage and coach you through your studies Program Director to ensure the quality and relevance of your curriculum Associate Program Director to manage issues that affect students in the classroom and to find and train the highest quality faculty to work with you Lead Instructor to update the content of your seminar and support new instructors Administrative Support Senior Student Services Coordinator to help you navigate University policies Student Services Coordinator to support you through all six seminars and Residency Distance Learning Librarian to enhance your learning by helping you locate credible online research materials Admissions Advisor to walk you thr ough the application process Technical Support Technical Support Team to provide you with 24/7 help desk support for technical issues within the online classroom
18
ADMISSIONS ADVISOR TECHNICAL SUPPORT TEAM FACULTY

Community of Support

PROGRAM DIRECTOR

DISTANCE LEARNING LIBRARIAN

STU NT DE

ASSOCIATE PROGRAM DIRECTOR

STUDENT SERVICES COORDINATOR SENIOR STUDENT SERVICES COORDINATOR

LEAD INSTRUCTOR

Graduate student collaboration, Residency 2006.

Evelyn Liougas, Student, School of Graduate and Continuing Studies

While I had reservations about an online program, I quickly realized that the support that I r eceived in Norwichs online program far surpassed my expectations. The connections I hav e made with both my peers and faculty have been invaluable in creating a collaborative, enlightening and supportive virtual classroom. I was further impressed by how quickly I received responses to any questions that I may have had from the faculty to the program director to the administrative director all were very accommodating and extremely helpful. Norwich truly does create a small community where you immediately feel at ease and w elcome.

ADMISSION TO NORWICH UNIVERSITYS SCHOOL OF GRADUATE AND CONTINUING STUDIES

SECURE YOUR FUTURE

Norwich seeks goal-oriented individuals who have high standards of personal ethics and have demonstrated excellence in their professional lives and academic studies. Applicants should have a desire to make a positive contribution to the field of information assurance. Selective admissions standards are intended to ensure that those admitted will succeed in a rigorous academic environment. We invite all applicants to contact our Admissions Advisors who are available to guide you and provide you with as much information and assistance as you need.

Application Process
Call an Admissions Advisor to begin the application process and submit: Essay of intent Resume Two letters of recommendation, from current or past supervisors, managers, or workplace colleagues Official transcript from the institution which conferred your undergraduate degree Application form and fee ($50 non-refundable) Applicants not meeting the criteria will be assessed on a case-by-case basis

Admission Criteria
A bachelors degree from a regionally accredited insitution or an equivalent degree from a foreign institution, as evaluated by WES, IERF, SpanTran or AACRAO Graduate testing is typically waived, but may be required based upon an applicants undergraduate GPA A score of 550 or higher on the TOEFL for students whose primary language is not English Two-year minimum work experience required for admission to some masters degree programs
20

Student work group, Residency 2006.

Laura Wheelock, Alumna, School of Graduate and Continuing Studies

The Norwich graduate program definitely challenged. There was a wealth of new information provided, a great deal of new learning went on and it tied dir ectly into what I do, e very day, as a professional. Much of the course brought my undergraduate education to the ne xt logical level. I truly feel prepared to take on more challenging projects, because I now possess this enhanced education.

FREQUENTLY ASKED QUESTIONS

Does the online format provide the same quality of education offered by a traditional campus? Yes. Numerous studies have proven that distance learners perform as well or better than th eir on-campus counterparts. The No Significant Difference Phenomenon (2001, IDECC, fifth edition) by Thomas L. Russell, cites 355 r esearch reports, papers, and summaries dating back to 1928 that found no significant difference between distance learning and in-class learning. Where a difference was identified, it generally favored the distance-learning student. Will my diploma say Online degree? No. You will receive the official, traditional diploma of Norwich University. Is financial aid available? Depending on the program, grants and scholarships may be available. Most qualifying students can obtain loans through the Federal Student Loan (Stafford Loan) program. Applicants may seek specific information by contacting our Admissions Office or by visiting our Financial Aid webpage. Is Norwich University accredited? Norwich University is accredited by the New England Association of Schools and Colleges, Inc., through its Commission on Institutions of Higher Education. Inquiries regarding the accreditation status by the New England Association should be directed to the administrative staff of the institution. Individuals may also contact: Commission on Institutions of Higher Education New England Association of Schools and Colleges 209 Burlington Road Bedford, MA 01730-1433 Phone: +1-781-271-0022 E-Mail: cih e@ neasc.org How long is the program? The program is comprised of three six-month semesters and a one-week Residency in June. All students should complete their coursework within 18 months of beginning the program (special arrangements may be made for deployments or family emergencies). You will attend Residency and graduate 15-24 months from your start date, depending on the start date you choose. Your Admissions Advisor will assist you with th e enrollment calendar, highlighting the unique benefits of each start date.
22

How many credits and courses do I take each semester? You will enroll in two sequential six-credit seminars each semester for a total of 12 credits. Each seminar lasts approximately 11 weeks and typically is followed by a two-week break. Do you accept transfer credits or grant credits based on work experience and certifications? Transfer credits will be evaluated on a case-by-case basis . While the majority of MSIA students have years of work experience and certifications, these cannot be used as a substitute of coursework. How much does the program cost? See the Tuition and Fees Supplement mailed with this brochure for the most current information or speak to your Admissions Advisor. When do I start the program? There are four start dates per year; March, June, September or December. What happens if I need to leave the program and want to come back later? Special situations are accommodated on a case-by-case basis. The linear and progressive nature of the coursework is a vital component of the program so our administrative support staff will work with you to fin d a solution that accommodates your situation and maintains the integrity of your studies. What does an average week look like for a student enrolled in an online graduate program at Norwich University? This program is designed for the working professional who must balance the demands of work and home with study. Most students require 20 hours of study per week, which can be managed without compromising your career and personal commitments. Your instructor and your Student Service Coordinator will help keep you on track. Students also find their cohort is a tremendous source of support in managing their time and studies. Who do I talk to if I have m ore questions, or I want to apply? You may call our Admissions Advisors at 1-800-460-5597 ext. 3363 (US and Canada) or +1-647-722-6642 ext. 3363 (International). They will be able to an swer all of your questions.

Student presentations, Residency 2006.

Peter Ford, Alumnus, School of Graduate and Continuing Studies

I chose Norwich because of its history, academic achievements, and reputation as an excellent school. I found the program to be challenging, stimulating, and educational. I feel that the masters program has really broadened my perceptions, my experience, and my knowledge.

NORWICH UNIVERSITY
JOIN A DYNAMIC MIX OF TRADITION AND INNOVATION

Established in 1819, Norwich is a small, quality university with a balance of strong professional and liberal arts programs at the undergraduate and graduate levels. Our 1600 undergraduate students choose either a military lifestyle as part o f the Corps of Cadets or a traditional college lifestyle. The campus is located in N orthfield, Vermont in the heart of the Green Mountains, truly one of the most beautiful locations in the world for a college campus. The combination of quality professional education, broad studies in the liberal arts, dedicated faculty and the leadership laboratory supplied by the Corps of Cadets has generated a legacy not found in many corners of the educational map. Norwich is a very pr oud place and maintains deep bonds with its alumni.

Expect Challenge. Achieve Distinction.

At Norwich, you will develop traits common among leaders in every profession discipline, integrity, confidence, critical thinking, adaptability, loyalty and honor through a wide range of opportunities that will empower you in lastin g ways you never imagined. At the core is a rigorous academic environment emphasizing an interactive online learning environment, mentoring relationships with faculty and extensive experiential learning. Expect the greatest challenge of your life. Norwich University has always been a lead er in higher education. Norwich was one of the first institutions to receive the National Security Agencys designation as a Center of Excellence in Information Assurance Education. Norwichs founder, Alden Partridge, brought experiential learning to US education, while forming the basis for the Morrill Land Grant Act, a uniquely American educational model. Norwich was the birthplace of the ROTC (Reserve Officers Training Corps). Norwich was the first private institution in the nation to teach engineering. Norwich was the first private military colleg e to admit African Americans into its Corps of Cadets. Norwich was the first private military college to admit women into the Corps of Cadets. Norwich was one of the first schools to admit international students. Norwichs collegiate band was the first in the nation.

WHEN YOU BECOME A PART OF NORWICH UNIVERSITY, YOU BECOME PART OF SOMETHING VERY OLD, VERY DEEP, AND VERY PROUD.
24

Jackman Hall, Norwich University.

Steven Lovaas, MSIA Alumnus, School of Graduate and Continuing Studies

When I started the Norwich MSIA pr ogram, I worked for a public school district with appr oximately 30,000 students and employees as the district's first-ever information security manager. Since graduating, I have taken the position of Network Security Manager for a large state university. I continue to apply the technical and managerial tools I learned at Norwich to infuse security into the planning, oper ations and maintenance of our information systems.

B. Cheatham, Alumna, School of Graduate and Continuing Studies

Norwich provides an outstanding distance learning envir onment. The web platform is user-friendly. The curriculum is all encompassing and superbly e xecuted. NU is a brick and mortar school pr oviding the best online program available.

EXPECT CHALLENGE. ACHIEVE DISTINCTION.

2789_NU_MSIA_brochure 02 10 2011

Norwich University School of Graduate and Continuing Studies 158 Harmon Drive Northfield, Vermont 05663-0367
Master of Arts in Diplomacy Master of Arts in Military History Master of Business Administration Master of Civil Engineering Master of Public Administration Master of Science in Business Continuity Management Master of Science in Information Assurance Master of Science in Nursing Master of Science in Organizational Leadership

Tel: 1-800-460-5597 ext. 3363 or +1-647-722-6642 ext. 3363 msia@grad.norwich.edu www.graduate.norwich.edu