Module: CYS7003-15 Offensive and Defensive Cyber Operations
Level: 7
Credit Value: 15
Module Tutor: John Curry
Module Tutor Contact Details: j.curry@bathspa.ac.uk
1.Brief description and aims of module
The key to successful defence is understanding successful offense. Part of that is developing insight into how a potential attacker ‘views’ the cyber world - that is, their mindset, their objectives, and the range of methods available to them.
This module aims to provide you with an in-depth understanding of the techniques used in computer and network defence. As cyber defenders you learn about the strategies and technical skills to protect and harden cyber systems uch as collecting appropriate data through logging, detecting persistent hacking attempts, and responding to intrusions. Theoretical perspectives introduced in the module are complimented with simulation activities that position you as cyber attackers looking to exploit a range of physical and logical vulnerabilities. Gaining practical experience of how cyber attacks are conducted informs risk reduction, and ultimately improves security in the organisations you may work for.
2.Outline syllabus
The evolution of attack and defence strategies is so rapid, the outline syllabus for this module is necessarily kept at topic, rather than content level.
● Security posture
● Cyber security kill chain and alternative models
● Reconnaissance
● Compromising the system - user identity
● Lateral movements
● Privilege escalation
● Active sensors
● Network segmentation
● Incident response
● Log analysis
● Recovery process
● Threat intelligence
● National security responses
3.Teaching and learning activities
Class Hours:
Seminar and workshops sessions expose key knowledge and perspectives relating to cyber offense/defence strategies and recovery procedures. Activities such as tabletop exercises and incident simulations provide an opportunity to gain practical understanding of real-world defence scenarios.
Independent Study:
In addition to the review of seminar materials you are required to identify and analyse a selection of national and international cyber attacks. This supports informed in-class discussion, while ensuring you are aware of the onsequences and considerations of the topic in the field.