Experience Learned in Obtaining the CNSS IA Course Certification and the CAE/IAE designation at Polytechnic University of Puerto Rico (PUPR)

The authors from PUPR share their experience in obtaining the Committee on National Security Systems (CNSS) course certification and the Center of Academic Excellence in Information Assurance Eduaction (CAE/IAE) designation. IA is a field that is rapidly evolving in the IT scenario. The urgent need for information security professionals has brought together industry, government, and academic sectors, to define the requirements for IA education. Developing core courses for graduate and undergraduate IA programs with a Common Body of Knowledge (CBK) in IA is critical for new and practicing IT security professionals, including technical and managerial personnel. The CBK maps courses to information security elements required in industry, government, and academia. Standards are currently regulated by the Certified Information System Security Professional (CISSP) domains, National Security Telecommunications Information Systems Security Institution (NSTISSI) standards, and the National Institute of Standards and Technology (NIST). By obtaiing the CNSS certification and the CAE/IAE designation, an institution can compete for infrastructure, capacity building, and scholarship grants to provide exceptional educational experiences and collaboration opportunities between designated and aspiring institutions at local and national levels. This includes internships, faculty and student exchange, research and publications, funds for faculty and student research, scholarships, workshops, among other activities.

[1]  Barry M. Lunt,et al.  Integration of information assurance and security into the IT2005 model curriculum , 2005, SIGITE '05.

[2]  Herbert J. Mattord,et al.  Principles of Information Security, 4th Edition , 2011 .

[3]  Cynthia E. Irvine,et al.  An Information Security Education Initiative for Engineering and Computer Science , 1997 .

[4]  Matt Bishop,et al.  The state of infosec education in academia: present and future directions , 1997 .

[5]  S. Malladi,et al.  Experiences and lessons learned in the design and implementation of an Information Assurance curriculum , 2007, 2007 IEEE SMC Information Assurance and Security Workshop.

[6]  Herbert J. Mattord,et al.  Principles of Information Security , 2004 .

[7]  Sehun Kim,et al.  Educational Requirements Analysis for Information Security Professionals in Korea , 2002, J. Inf. Syst. Educ..

[8]  Gordon B. Davis,et al.  IS '97: model curriculum and guidelines for undergraduate degree programs in information systems , 1996, IS '97.

[9]  Herbert J. Mattord,et al.  Designing and teaching information security curriculum , 2004, InfoSecCD '04.

[10]  Sethuraman Panchanathan,et al.  A comprehensive curriculum for IT education and workforce development: an engineering approach , 2001, SIGCSE '01.

[11]  Rahul Tikekar,et al.  Experiences with developing a computer security information assurance curriculum , 2003 .

[12]  Dino Schweitzer,et al.  Meeting the criteria for a Center of Academic Excellence (CAE) in information assurance education , 2006 .

[13]  James A. Davis Report on Information Assurance Curriculum Development , 2002 .

[14]  Deborah M. Cooper,et al.  Guest Editors' Introduction: Security and Privacy: Promising Advances , 1997, IEEE Softw..