Cybersecurity as a Crosscutting Concept Across an Undergrad Computer Science Curriculum: An Experience Report

Although many Computer Science (CS) programs offer cybersecurity courses, they are typically optional and placed at the periphery of the program. We advocate to integrate cybersecurity as a crosscutting concept in CS curricula, which is also consistent with latest cybersecurity curricular guidelines, e.g., CSEC2017. We describe our experience of implementing this crosscutting intervention across three undergraduate core CS courses at a leading technical university in Europe between 2018 and 2023, collectively educating over 2200 students. The security education was incorporated within CS courses using a partnership between the responsible course instructor and a security expert, i.e., the security expert (after consultation with course instructors) developed and taught lectures covering multiple CSEC2017 knowledge areas. This created a complex dynamic between three stakeholders: the course instructor, the security expert, and the students. We reflect on our intervention from the perspective of the three stakeholders -- we conducted a post-course survey to collect student perceptions, and semi-supervised interviews with responsible course instructors and the security expert to gauge their experience. We found that while the students were extremely enthusiastic about the security content and retained its impact several years later, the misaligned incentives for the instructors and the security expert made it difficult to sustain this intervention without organizational support. By identifying limitations in our intervention, we suggest ideas for sustaining it.Comment: 6 pages; Accepted at SIGCSE TS '2

Integrating Security into the Undergraduate Software Engineering Curriculum

This research included a thorough examination of the existing software assurance or what is commonly called software security knowledge, methodologies and what information security technologies is currently being recommended by the information technology community. Finally it is demonstrated how this security knowledge could be incorporated into the curriculum for undergraduate software engineering

Overcoming the Challenges of Teaching Cybersecurity in UK Computer Science Degree Programmes

This Innovative Practice Full Paper explores the diversity of challenges relating to the teaching of cybersecurity in UK higher education degree programmes, through the lens of national policy, to the impact on pedagogy and practice.There is a serious demand for cybersecurity specialists, both in the UK and globally; there is thus significant and growing higher education provision related to specialist undergraduate and postgraduate courses focusing on varying aspects of cybersecurity. To make our digital systems and products more secure, all in IT need to know some cybersecurity — thus, there is a case for depth as well as breadth; this is not a new concern, but it is a growing one. Delivering cybersecurity effectively across general computer science programmes presents a number of challenges related to pedagogy, resources, faculty and infrastructure, as well as responding to industry requirements.Computer science and cognate engineering disciplines are evolving to meet these demands — both at school-level, as well as at university — however, doing so is not without challenges. This paper explores the progress made to date in the UK, building on previous work in cybersecurity education and accreditation by highlighting key challenges and opportunities, as well as identifying a number of enhancement activities for use by the international cybersecurity education community. It frames these challenges through concerns with the quality and availability of underpinning educational resources, the competencies and skills of faculty (especially focusing on pedagogy, progression and assessment), and articulating the necessary technical resources and infrastructure related to delivering rigorous cybersecurity content in general computer science and cognate degrees.Though this critical evaluation of an emerging national case study of cybersecurity education in the UK, we also present a number of recommendations across policy and practice — from pedagogic principles and developing effective cybersecurity teaching practice, challenges in the recruitment, retention and professional development of faculty, to supporting diverse routes into post-compulsory cybersecurity education (and thus, diverse careers) — to provide the foundation for potential replicability and portability to other jurisdictions contemplating related education and skills reform initiatives and interventions

Creating a Multifarious Cyber Science Major

Existing approaches to computing-based cyber undergraduate majors typically take one of two forms: a broad exploration of both technical and human aspects, or a deep technical exploration of a single discipline relevant to cybersecurity. This paper describes the creation of a third approach—a multifarious major, consistent with Cybersecurity Curricula 2017, the ABET Cybersecurity Program Criteria, and the National Security Agency Center for Academic Excellence—Cyber Operations criteria. Our novel curriculum relies on a 10-course common foundation extended by one of five possible concentrations, each of which is delivered through a disciplinary lens and specialized into a highly relevant computing interest area serving society’s diverse cyber needs. The journey began years ago when we infused cybersecurity education throughout our programs, seeking to keep offerings and extracurricular activities relevant in society’s increasingly complex relationship with cyberspace. This paper details the overarching design principles, decision-making process, benchmarking, and feedback elicitation activities. A surprising key step was merging several curricula proposals into a single hybrid option. The new major attracted a strong initial cohort, meeting our enrollment goals and exceeding our diversity goals. We provide several recommendations for any institution embarking on a process of designing a new cyber-named major

Proposal for a Joint Cybersecurity and Information Technology Management Program

Cybersecurity and Information Technology Management programs have many similarities and many similar knowledge, skills, and abilities are taught across both programs. The skill mappings for the NICE Framework and the knowledge units required to become a National Security Agency and Department of Homeland Security Center of Academic Excellence in Cyber Defense Education contain many information technology management functions. This paper explores one university’s perception on how a joint Cybersecurity and Information Technology Management program could be developed to upskill students to be work force ready

Graduate Bulletin, 2013-2014

https://red.mnstate.edu/graduate_bulletins/1027/thumbnail.jp

Preparing millennials as digital citizens and socially and environmentally responsible business professionals in a socially irresponsible climate

As of 2015, a millennial born in the 1990's became the largest population in the workplace and are still growing. Studies indicate that a millennial is tech savvy but lag in the exercise of digital responsibility. In addition, they are passive towards environmental sustainability and fail to grasp the importance of social responsibility. This paper provides a review of such findings relating to business communications educators in their classrooms. The literature should enable the development of a millennial as an excellent global citizen through business communications curricula that emphasizes digital citizenship, environmental sustainability and social responsibility. The impetus for this work is to provide guidance in the development of courses and teaching strategies customized to the development of each millennial as a digital, environmental and socially responsible global citizen

Infusing Technology Skills into the Law School Curriculum

Legal education has never considered technological proficiency to be a key outcome. Law professors may debate the merits of audiovisual teaching tools: do they work when they should?; do they facilitate learning objectives or are they just toys?; whom should they call when something breaks?; and so on. Teachers use course management sites like TWEN and Blackboard to share information and manage basic course functions. Many fear that laptops and other devices distract students in class, and some institute outright bans. Among many law teachers, technology is warily accepted, but only for the purpose of achieving traditional educational objectives. What if educators viewed technology as a competency that students need to master in order to succeed in practice? This paper will identify gaps between the use of technology in practice and in our classrooms; suggest ways that we can change what we teach, and the way we teach, to address the disparity; consider the benefits/drawbacks of developing new courses, or infusing technology-related outcomes throughout the curriculum; and propose methods to encourage professors to teach with technology in ways that model the practices of successful attorneys

Graduate Online Bulletin, 2011-2012 (2011)

https://red.mnstate.edu/graduate_bulletins/1026/thumbnail.jp

Teacher Education and Technology Integration: How Do Preservice Teachers Perceive Their Readiness to Infuse Technology into the Learning Environment?

In the past twenty years, substantial investments have been made in educational technology at the K-12 level. While increased integration of technology in K-12 teaching is more likely to occur when prospective teachers are exposed to a variety of computer uses in the majority of their undergraduate courses prior to their teaching in schools, due to the limited exposure in the use of technology by university teachers as well as the fast paced changes, preservice teachers often are not prepared for integrating and using technology in the classroom. The purpose of this study was to evaluate the perceptions of preservice students in their ability to integrate technology into a learning environment based on university coursework and field experience. Preservice teachers, within an NCATE accredited teacher education program, were surveyed using the 2008 ISTE/NETS*T standards as a framework. Results of the data analysis, across the four academic years based on curriculum, modeling of university professors, and integration of technology within the methods coursework of the Leading Teacher Program, suggested that there was no significant difference among grade levels in their perceived ability to integrate technology. Results of the data analysis of seniors revealed multiple areas of significant differences before and after their field experience: ability to use online content response journals, integrating technology into a learning environment, and total score of the survey. Additional data analysis also revealed that the perceptions of Early Childhood students\u27 ability to integrate technology into a learning environment was significantly lower than that of Elementary and Secondary students within the same program. In addition, students who had well integrated modeling of technology in high school, revealed significantly higher perceptions of their ability to integrate technology into the learning environment. The conclusions drawn from the results of this study provide an insight into technology savvy characteristics of preservice teachers within a teacher education program, which has technology as one of its core themes; technology modeling and program design within a teacher education program can have an impact on preservice teachers to have stronger perceptions about their ability to integrate technology