Computer Science & Information Systems

Online Master of Science in Cyber Security and Information Assurance 

33-Credit Graduate Program in Cyber Security (4 semesters, online) 

The Masters of Science in Cyber Security and Information Assurance program focuses on the design, planning, and management of systems and procedures for protecting cyber systems and infrastructure from external threats, including terrorism.

Enrolled students can finish this degree program completely online. This program provides a solid core of classes as well as the opportunity to select one of two emphases:

  • Cyber and Web Security
  • Government, Regulation, and Compliance (GRC) and IS Controls

Request Information

Cyber Security Job Demand
24/7 Online Delivery
Top Cyber Security Jobs

Course Number Course Title Credits
Core Required Classes
CSIA 6000 Network Security 3
CSIA 6030 Advanced Persistent Threats 3
CSIA 6040 IT Project Management 3
CSIA 6060 IT Risk Management 3
PADM 6440 Research Methods 3
Total Credits:
Emphasis #1: Cyber and Web Security (Select 12 credits)
CSIA 6200 Cyber Operations
CSIA 6220 Security DevOps
CSIA 6230 Cryptography Fundamentals
CSIA 6240 Digital Forensics
CSIA 6250 Network & Internet Forensics
CSIA 6300 Cyber Law & Investigations
CSIA 6850 Special Topics
Total Credits:
Emphasis #2: GRC and IS Controls (Select 12 credits)
CSIA 6300 Cyber Law & Investigations
CSIA 6310 Compliance & Cybersecurity
CSIA 6320 Security Frameworks
CSIA 6330 Information Systems Auditing
CSIA 6850 Special Topics
Total Credits:
Capstone Experience (Thesis Track)
CSIA 6500 Capstone
Non-Thesis Track
Students may choose a Non-Thesis Track to complete their degree: this Track requires the student to take any two additional courses (6 credits) from either CSIA Emphasis listed in the above sections.
Total Program Credits:

CSIA 6000 - Network Security

This course introduces students to the concepts and principles of network security. Students will gain experience in many security technologies that will enable them to apply the security concepts and principles in order to secure networks.

CSIA 6010 - Communication, Critical Thinking, Problem Solving, and Decision Making

This course introduces students to the skills needed to solve problems in IT through critical thinking, communication, and decision making processes. This course will give participants some practical tools and hands-on experience with critical thinking and problem solving.

CSIA 6020 - IT Policy Compliance & Disaster Recovery

The course will teach the student methods in identifying vulnerabilities, and take appropriate countermeasures to prevent and mitigate failure risks for an organization. It also provides the security professional with a foundation in disaster recovery principles, including: development/implementation of disaster recovery policies, plans, and procedures; assessment of risks in the enterprise; etc.

CSIA 6030 - Advanced Persistent Threats

The course instructs students in how to recognize, track and mitigate APT’s, based on APT trends (nation-state attacks, funding, distribution models). Students learn how to evaluate the impact of targeted attacks that occur across multiple threat vectors, utilizing technologies and policy-based security research and data forensics guidelines.

CSIA 6040 - IT Project management

This course enables students to reinforce their IT project management skills and provides a road-map for implementing IT security in organizations. Students will learn to identify different issues arising during an organization-wide security planning process and how to avoid and eliminate those issues.

CSIA 6060 - IT Risk Management

This course will explore the security techniques and fundamentals involved in minimizing critical infrastructure security risks including how to respond when security has been breached. It introduces student to concepts such as securing Web clients, servers, and communications. It also investigates the use of firewalls, digital certificates, and legal issues.

CSIA 6200 - Hacking & Security Vulnerability Management

This course is designed to provide the necessary skills to comprehend the overall network security posture and basic practices in vulnerability management. This includes understanding the need for constant assessment required to maintain a security edge for organizations.

CSIA 6210 - Penetration Testing

This course is designed to identify and provide the necessary skills for penetration testing that aids security professionals in the ability to perform IT security assessments in a purely native environment dedicated to hacking. Students will work in environments where they can apply penetration testing skills on a live isolated network system.

CSIA 6220 - Cloud Security

This course exposes the student to mobile hacking techniques for today’s most popular cellular phones: Android, iPhone and iPad. The students will understand the platform security system and determine the vulnerabilities and possible exploits to obtain the information from the mobile device. It also covers the necessary concepts to secure the mobile device and using it as a penetration testing.

CSIA 6230 - Cryptography Fundamentals

This course will present the fundamentals of cryptography, as well as its applications and issues of how cryptography is used in practice. Students will learn about cryptographic algorithms used to secure information.

CSIA 6240 - Digital Forensics

This course is designed to provide students with a basic knowledge in digital forensics and focuses on forensics examination of data stored on computer systems.

CSIA 6250 - Network & Internet Forensics

This course is designed to provide a practical guide to Internet fraud which gives student the skills they need to fight back against the spammers, con artists, and identity thieves that plague the Internet.

CSIA 6260 - Mobile Security

The course provides a carefully articulated action plan for students who wish to understand the scope of influence from BYOD trends, and how to architect a functional operation guideline for an organization wanting to balance between productivity and risk management. Students develop a fundamental understanding of a BYOD methodology.

CSIA 6300 - E-Business Security and Cyber Investigations

This course provides students with a basic knowledge in Cyber Crime investigation and prevention. The students learn the knowledge and technology needed to detect, examine, and prevent computer related high technology crimes.

CSIA 6310 - Introduction to Government, Regulation, and Compliance

The course provides tactical breakdowns of security assessment parameters associated with the government, regulation, and compliance (GRC) security policies. Students will learn what key components from within the security assessment and policy development sectors are necessary to help an organization maintain not only compliance, but a strident position on awareness and risk management, based on Federal guidelines.

CSIA 6320 - Security Frameworks

This course is designed to introduce the objectives and benefits of information security frameworks. The course outlines the requirements, establishment, operation, monitoring, maintenance and improvement of security frameworks, as well as insight into the best practices using security frameworks.

CSIA 6340 - Cyber Legislation and Litigation

In this course students will study recent case law in data breach litigation as well as research emerging legislation set forth by state and federal governments. This information is critical for students as they enter the workforce since due process is becoming ever more entwined with the world of cybersecurity.

CSIA 6350 - PCI/DSS and Harvard Business Review Case Study

This course provides an introduction of the relevance and mandate-specific parameters of the international standards for Payment Card Infrastructure (PCI)/Data Security Standard (DSS). The course uses the Harvard Business Review Case Study to provide an in-depth review and analysis of how PCI activities and compromises can help mitigate risks associated with PCI non-compliance.

CSIA 6500 - Capstone Experience

This course requires the student to be engaged in either a Thesis project or approved Internship.

CSIA 6850 - Special Topics

Special topics in cyber security and information assurance problems related to cyber security practice and theory, with emphasis on implementation and analysis of current and emerging cyber security technologies, utilizing best practice principles.

Think you can't afford to earn your Masters of Science in Cyber Security and Information Assurance degree? Financial Aid and payment plans are available to those who qualify. For information, please contact the following:

SUU Financial Aid: SUU Cashiers Office (Payment Plans):
(p) 435-586-7735 (p) 435-865-8032
(f) 435-586-7736 (f) 435-865-8470
Financial Aid website Cashier's Office website

Tuition Waivers

Partial tuition waivers are available each year. Students can apply to receive a waiver

Tuition Waiver Application

Please complete the entire application and submit before the deadline of the term for which you wish to be considered for admission. Applications must be complete before the deadline.

The following materials must be sent to SUU Admissions Office by mail to the address below or by email to

  1. Complete and submit the application for admission
  2. Payment of $60 non-refundable application fee
  3. Official transcripts from each college or university attended (unless institution is SUU)
  4. Letter of intent describing the following:
    • Academic background
    • Work experience
    • Intentions and desired emphasis area
  5. Three (3) letters of recommendation
  6. Bachelor’s Degree from an accredited institution in one of the following disciplines:
    • Information Systems
    • Computer Science
    • Science
    • Related Area (approved by Program Administration)
  7. A minimum cumulative GPA of 3.0 on a 4.0 score in the last 60 semester, or 90 quarter, hours
  8. Documentation of industry certifications (e.g. A+, Security+, MCSE, CISSP, etc.) If you do not have any current certifications, please include that in your application.
  9. Official GRE scores or GRE waiver form from the CSIA department

Admissions Deadline: Apply now to be considered for the next available term. Once you apply, someone will contact you shortly

Submit materials noted above except application (which is submitted online) to:

Southern Utah University
Admissions Office
PO Box 8008
Cedar City, UT 84720
435-865-8223 (fax)

Capstone Requirement

Master of Cyber Security & Information Assurance

Students enrolled in the program must complete a Capstone, which could be an internship or a thesis. Students should begin planning and keep in mind the guidelines and requirements for completing the capstone early in their program.