TECH 179 - Cyber Security System Management
(Cyberdefense)

Fall 2026 Sam Bowne

Sections

Section 01 Lecture Mon and Wed 9:00 - 9:50 am SCI258
Section 11 Lab: Mon 10:00 am - 12:45 pm ENG103
Section 12 Lab: Wed 10:00 am - 12:45 pm ENG103

Canvas
Sect 2, 28524: Mon & Weds & 12:00-1:15 pm in ENG103 Canvas

Syllabus (Revised)
Schedule (Rev April 14)
Accessing the FORTINET Training Institute.pdf
FORTINET Training

Last day to add: Tue, Feb 17, 2026

Schedule · Slides · Projects


Textbook

Applied Incident Response, First Edition by by Steve Anson
Publisher: Wiley (January 14, 2020)
Sold by: Amazon Digital Services, LLC
ASIN: B083XF121Z
ISBN-13: 978-1119560319
Kindle edition: $28, Paper edition: $26 (prices I saw on 5-5-26 at Amazon)
Buy from Amazon

Quizzes

The quizzes are multiple-choice, online, and open-book. However, you may not ask other people to help you during the quizzes. You will need to study the textbook chapter before the lecture covering it, and take the quiz before that class. Each quiz is due 30 min. before class. Each quiz has 5 questions, you have ten minutes to take it, and you can make two attempts. If you take the quiz twice, the higher score counts.

Canvas is not ready yet

Messages

For questions, please send a message inside Canvas.

Schedule

DateAssignment DueTopic
Wed 8-19 Class Intro
Mon 8-24Quiz 1 due 1.. The Threat Landscape
Wed 8-26
Mon 8-31Quiz 2 due 2. Incident Readiness
Wed 9-2IR 410 Flags 1-2 due
Mon 9-7 No Class--Labor Day
Wed 9-9
Mon 9-14Quiz 3 due 3. Remote Triage
Wed 9-16IR 410 Flags 3-5 due
Mon 9-21Quiz 4 due 4. Remote Triage Tools
Wed 9-23IR 100 due
Mon 9-28Quiz 5 due 5. Acquiring Memory
Wed 9-30IR 371 due
Mon 10-5Quiz 6 due 6. Disk Imaging
Wed 10-7IR 372 due
Mon 10-12Quiz 7 due 7. Network Security Monitoring
Wed 10-14IR 350 due
Mon 10-19Quiz 8 due 8. Event Log Analysis
Wed 10-21IR 400 due
Mon 10-26Quiz 9 due 9. Memory Analysis
Wed 10-28BoTS Flags 1.1-1.3 due
Mon 11-2Quiz 10 due 10. Malware Analysis
Wed 11-4BoTS Flags 1.4-1.5 due
Mon 11-9Quiz 11 due 11. Disk Forensics
Wed 11-11BoTS Flags 2.1-2.2 due No Class--Veteran's Day
Mon 11-16Quiz 12 due 12. Lateral Movement Analysis
Wed 11-18BoTS Flags 2.3-2.4 due
Mon 11-23Quiz 13 due 13. Continuous Improvement
Wed 11-25 No Class--Non-Instructional Day
Mon 11-30Quiz 14 due 14. Proactive Activities
Wed 12-2
Mon 12-7 Last day to turn in material
Last class: no new material
Mon 12-14  Final Exam 8:30-10:30 AM

Lectures

Grading Policy (pdf)
Syllabus (pdf)

1. The Threat Landscape
2. Incident Readiness
3. Remote Triage
4. Remote Triage Tools
5. Acquiring Memory
6. Disk Imaging
7. Network Security Monitoring
8. Event Log Analysis
9. Memory Analysis
10. Malware Analysis
11. Disk Forensice
12. Lateral Movement Analysis
13. Continuous Improvement
14. Proactive Activities

Hands-On Labs

Firewall Setup via CLI
In END 490, I used a laptop and two cables from the Cisco boxes:
A blue console-to-USB cable
A yellow Ethernet cable, from port 1 on the firewall to the laptop.

Last revised 5-5-26 2:39 pm