Master of Science in Information Security & Assurance

Program Director

Rosemarie Pelletier, DPA

Welcome to Norwich University's Information Security & Assurance Program

The evolution of information security and assurance continues. Information security is a key component in creating and maintaining an organizational governance, risk, and compliance (GRC) program. Information security is an integral business enabler that supports the organization, from data to infrastructure protection to the complexity of cloud infrastructures and mobile technologies. Information security and assurance encompasses technology considerations such as, computer forensics, threat detection, vulnerability analysis and continuous monitoring. It also includes the ability to manage large complex projects and conduct business risk assessments that span global companies and business partnerships. The Master of Science in Information Security & Assurance program at Norwich is a unique program combining information security and assurance best practices with an emphasis on risk management, governance, and compliance in order to provide the most comprehensive and business focused approach to securing and protecting the organization.

We provide you with a unique online experience combining a current and relevant curriculum that emphasizes strategic problem solving and critical thinking. Our online classroom setting provides focused interaction with our faculty practitioners who are experts in the many facets of information security and risk management. I look forward to having you join the Master of Science in Information Security & Assurance program.

Read Bio

Dr. Pelletier served as the Secretary of the Virginia State Technology Council where she advised the Executive and Legislative branches on technology policy issues. She chaired the Transportation Technology Advisory Panel in writing the Transportation Technology Blueprint for the Commonwealth of Virginia. She was appointed by Governor George Allen to the Joint Committee on Technology and Science to study and advise on technology and science policies. Appointed by Governor Mark Warner, Dr. Pelletier served on the statewide speakers bureau to address transportation funding issues throughout the Commonwealth. She combines her knowledge and experience in technology policy with her education in public policy and public administration to bring the best of both worlds to Norwich University.

jen
Associate Program Director
Jennifer Gagnon, MJA

Jennifer Gagnon is the Associate Program Director for the Master of Public Administration and Master of Science in Information Security & Assurance programs. She joined Norwich University in August 2006, and spent several years supporting several graduate programs and advising students through their academic journey at Norwich. In 2009, she completed the Master of Justice Administration program at Norwich and holds a Bachelor of Arts in Communications.

Read more »
portrait
Associate Program Director of Academics
George Silowash, MS, CISSP, GCFE

George J. Silowash was named Chief Information Security Officer (CISO) for Norwich University in December 2016. Previously, he was a cybersecurity threat and incident analyst within the CERT® at the Software Engineering Institute (SEI), a unit of Carnegie Mellon University. He has over a decade of experience in the information technology field, including systems administration and information security. His latest work involves developing technical controls using open source software to counter data exfiltration attempts by malicious insiders. Other areas of interest include privacy and security, digital forensic investigations, and critical infrastructure security. Before joining CERT, he was an Information Systems Security Officer for the United States Department of Justice, National Drug Intelligence Center. He was also a systems administrator for a healthcare company prior to working in the Federal government. He holds a master of science in information assurance from Norwich University and is a certified information systems security professional (CISSP).

Read more »
Associate Program Director
Lars Nielsen, MA

Lars Nielsen is the associate program director (administrative) for both the Master of Arts in Military History as well as the Master of Arts in History programs. Additionally, he serves as the associate program director for the Master of Public Administration and the Master of Science in Information Security & Assurance programs. His primary duty is to work with the program director to make sure that classroom content corresponds to the director’s vision as closely as possible. He has been with the military history program since its inception in 2005 and along the way earned an MA in its sister program, Master of Arts in Diplomacy. He also teaches political science and history as an adjunct to Norwich undergraduates and writes plays, poetry, and fiction in his spare time.

Read more »
empty
Student Services Advisor
Benjamin Sipe, MPA

As an undergraduate student at Norwich University, Benjamin Sipe was a member of the Corps of Cadets and graduated in 2005 with a BA in history. He went on to receive his master's degree in public administration from Norwich in 2010. He currently serves the Norwich University Online community as the Assistant Director of Student Services as well as the student service advisor for multiple master's programs. His role is to support the entire student services advisor team and their students. He looks forward to residency each year when he can meet all the students in person and share in their experience.
 

Read more »

Featured Faculty

portrait
D. Stuart McCubbrey, MBA, CISSP, CISA, CIA

D. Stuart McCubbrey has more than 30 years of experience in information technology audit and information security management/consulting. He is currently the director of IT risk management & compliance at General Motors in Detroit, MI, leading a team responsible for IT Risk Management, IT Regulatory Compliance (SOX, PCI, HIPAA) and IT Security Metrics, reporting to the chief information security officer. Prior to this role, Stuart led the global Information Technology Audit function at GM. He has developed and taught information security courses since 2001 and is a certified information security systems professional (CISSP), a certified information security auditor (CISA), and a certified internal auditor (CIA). He received his master of business administration in management information systems from the University of Michigan, Dearborn and his bachelor of arts in economics, with a minor in computer science from the University of Michigan, Ann Arbor.

Read more »
Jerry Dixon, MS

Jerry is the Chief Information Security Officer for Crowdstrike. Jerry has over two decades of cybersecurity experience on the front lines of incident response, cyber crisis management, national cybersecurity policy, and critical infrastructure protection. Most recently as the Vice President of Cyber Threat Intelligence and Incident Response for American Express. Prior to that, he has led teams at Cisco, IRS, Marriott, and Homeland Security. Most notably as the Director of the National Cyber Security Division and US-CERT. He was also a member of the Commission on Cybersecurity for the 44th President. Jerry earned a Master of Science from Norwich University in Information Assurance and a Bachelors in Criminal Justice from Liberty University.

Read more »
Tijan Drammeh, MBA, CISSP, CISA, CEH, CBCP, CSSA, PMP

Tijan Drammeh works for the Washington Metropolitan Transit Authority (WMATA), the second largest transit authority in the U.S. as an Information Systems Security Officer (ISSO). In his current role he leads the group that works to ensure that the authority complies with various industry and government regulations as well as its own security policies - PCI DSS, HIPAA, SOX, critical infrastructure protection regulations etc. In addition, his team reviews all IT infrastructure architecture proposals from a risk perspective and act as the last gate before any approval is granted for implementation. Prior to WMATA, he designed, architected and maintained fairly complex IT infrastructures for both private and public sector organizations (MCI, Verizon, UMUC), running mostly large UNIX and Linux operating systems. He received an MBA from University of Maryland University College, his master of science degree in electrical engineering from George Washington University, and a bachelor of science degree in electrical engineering from Lagos University in Nigeria. His areas of professional interest include cyber security policy implementation, critical infrastructure protection (SCADA), business continuity, risk management, compliance and audits, vulnerability management and project management. He holds several industry certifications: CISSP, CISA, CEH, CBCP, CSSA and PMP.

Read more »

Faculty

Donald Holden, MBA, CISSP-ISSMP

Don Holden is a principal consultant with Anvil Security Consulting and adjunct professor at Norwich University. He has more than 20 years’ experience in information systems, security and vulnerability assessments, security standards development, encryption, business continuity and disaster recovery in both industry and government. He has participated in HIPAA assessments of a major healthcare insurer and a multi-practice e-health records (EHR) implementation. As a security juror he evaluated EHR systems submitted for certification by CCHIT. Previously He was a technology leader for SRI Consulting. Some of his previous achievements include leading a cyber-insurance joint venture project, developing privacy and encryption policies for healthcare companies, major financial institutions and recommending standards-based IT security policies for a federal financial regulator. He was a contributor to the Congressional “Corporate Information Security Working Group on Best Practices and Metrics” and the WEDi/SNIP “Whitepaper on HIPAA Security Policies and Practices.” He received the 2008 Distinguished Faculty Award for Norwich University's Master of Science in Information Security & Assurance program. He has an MBA from Wharton and is a Certified Information System Security Professional (CISSP) and Information System Security Management Professional (ISSMP).

Thomas Hyslip, ScD

Dr. Thomas Hyslip is currently the Resident Agent in Charge of the Department of Defense, Defense Criminal Investigative Service (DCIS), Cyber Field Office, Eastern Resident Agency. Prior to joining the DCIS in 2007, he was a special agent with the U.S. Environmental Protection Agency, Criminal Investigation Division, and the U.S. Secret Service. Throughout his 17 years of federal law enforcement, he has specialized in cybercrime investigations and computer forensics. He has testified as an expert witness on computer forensics and network intrusions at numerous federal, state, and local courts. He is also a Lieutenant Colonel in the U.S. Army Reserves and is currently assigned as an Assistant Professor of Preventive Medicine at the F. Edward Hébert School of Medicine, Uniformed Services University of the Health Sciences. LTC Hyslip has a mix of active duty and reserve assignments spanning over 20 years including assignments with the U.S. African Command, Office of Inspector General, the Department of Defense, Office of Inspector General, and the U.S. Army Reserve Information Operations Command. In 2005 LTC Hyslip deployed to Iraq with the 306th Military Police Battalion and earned a Bronze Star, Purple Heart, and Combat Action Badge. He received his doctor of science degree in information assurance from Capitol College in 2014. He previously obtained a master of science degree from East Carolina University and a bachelor of science degree from Clarkson University.

Christopher King, MS
John Mason, MBA, CISM, CISA, CGEIT, CFE, CBA, CFSA, CFSSP

John Mason has more than 20 years of experience in internal audit, regulatory compliance, information security, SSAE 16s/SAS 70s, enterprise risk management, investigations/loss prevention, and process reengineering. He is director at SSAE 16 Professionals, a leading PCAOB-registered CPA firm.

He has held senior positions in a variety of companies where he has helped establish information risk management programs and designed risk-based audit programs. He has written, reviewed, and researched finance control policies and procedures; performed audits for governmental agencies; and managed a full spectrum of financial, operational, SOX compliance, and data processing audits. He is a co-author of Computer Security Handbook, 5th Edition.

He holds an MBA degree and several certificates including a CISM, CISA, CGEIT, CFE, CBA, CFSA, and CFSSP. He lives in Manhattan Beach, California.

Michael Miora, MS, CISSP-ISSMP, FBCI

Michael Miora has designed and assessed secure, survivable, and highly robust systems for industry and government for 35 years. He has worked extensively in the financial, health care, and communications industries and developed business continuity and disaster recovery plans for companies and government agencies in the US and internationally.

He originated the Generalized Cost Consequence (GCC) model for performing business impact analysis, now an industry standard methodology. He has consulted to the National Computer Security Center and is certified as a CISSP-ISSMP professional. He has served as the director of the security consulting organization for the National Computer Security Association (now a part of Verizon).

A frequent speaker and prolific author, he is a contributor to Computer Security Handbook, 5th Edition, and the Handbook of Information Security. His undergraduate and master’s degrees, both in mathematics, were earned at UCLA and UC Berkeley.

Charles Pak, PhD, CISM, CRISC, CISSP, ITIL, SSCP, MCSE, MCT, Security +, CCNA

Dr. Charles Pak has taught information systems courses for over 25 years as an IS practitioner and professor. He has managed U.S. Federal Government data centers for over 25 years, including personnel. He has designed, tested, implemented, and maintained many of these enterprise network sites (largest in the world) that encompass distributed sites across the U.S. as well as the international sites. He has managed state-of-the art systems for military and federal government missions for which he was deployed. His research topics include cyber security, critical infrastructure protection (CIP), PKI, cyber counter terrorism, and risk assessment & management. He has published several research papers in information security. He earned his PhD in information security from Nova Southeastern University, a master of science degree in network security from Capitol Technology University, and a bachelor of science degree in electrical engineering from Penn State University. He holds several industry certifications: CISM, CRISC, CISSP, ITIL, SSCP, MCSE, MCT, Security +, and CCNA.

Matt Plass, DSc, CISSP, C|EH, CPT, MCP

Dr. Mathias Plass is currently the Security Architect for Ulta Beauty. As a senior leader on the IT Risk Management team, he is responsible for managing Ulta’s disaster recovery, governance and compliance, and maintaining the risk management posture of the organization. Prior to joining Ulta, he served as the Principal Security Engineer for WOW – Cable Internet and Phone, Technology & Security Manager for Home Run Inn Inc., and as a programmer with Safeco Insurance, Castle Metals and Chicago Title and Trust. He is a certified information systems security professional (CISSP), ethical hacker (C|EH), penetration tester (CPT), and network professional (Network+). He received his doctor of science degree from Capitol Technology University in Laurel, Maryland in 2015; a master of science degree in information assurance in 2012 from the University of Maryland University College in Adelphi, Maryland; and his bachelor of science degree from the University of Illinois at Chicago in 1996.

Arif Siddiqi, PhD, PMP
Charles Snow, PhD
Bill Yurek, J.D., CCIPS, CCI

Advisory Board Members

A team of distinguished professionals from the industry and field offer their expertise and guidance as advisory board members for the Master of Science in Information Security & Assurance program.

portrait
Advisory Board Member
Leslie Daigle, MS

Leslie Daigle has been actively involved in shaping the Internet’s practical evolution for more than 20 years. Always fascinated by the Internet’s technology, innovation and real world impact, she started her professional career working with Internet applications technologies for corporate commercial activities, and expanded to take on leadership roles within the premier Internet technology standardization organization, the Internet Engineering Task Force (IETF).

Ms. Daigle is currently Principal at ThinkingCat Enterprises where she has launched the online InternetImpossible.org storybook of the Internet’s experienced global impact. She was most recently the Internet Society’s first Chief Internet Technology Officer. She joined the ISOC in 2007, and she helped to (re)create the global dialog on important technical issues, calling stakeholders to action by providing achievable targets and facilitating their own collaboration across (corporate) organizational boundaries until May 2014.

Ms. Daigle was an appointed member of the related Internet Architecture Board (IAB) from March 2000 to March 2008, and was the elected Chair of the IAB from 2002 to 2007. Prior to working for the Internet Society, she held the positions of Consulting Engineer at Cisco Systems, Director of Directory Research at VeriSign, and Vice President for Research at industry pioneer Bunyip Information Systems, among others. She holds an MS in Computing & Information Science from the University of Guelph, and a BS in Math and Computer Science from McGill University.

Read more »
portrait
Advisory Board Member
Glenn Deen

Glenn Deen works on Internet Technology and Content Networking & Distribution at Comcast-NBC Universal where he is an Advanced Technology Engineer and Director of Networking and Distribution Technologies. Glenn is first and foremost a computer scientist and holds 14 US Patents in networking, security, applied cryptography, and distributed systems, and brings with him several decades of industry experience at companies including BP, IBM,  IBM Research, and his latest position at Comcast-NBCUniversal. If you use a digital camera, watch movies, or play computer games, then chances are very good that you use technology that glenn helped create. 

Today, instead of his office in Los Angeles, you are most likely to find Glenn where fellow Internet technologists and policy experts gather to build a better Internet such as the IETF, W3C, ICANN, IGF, ISOC, M3AAWG, and industry alliances such as the Streaming Video Alliance. Glenn works to drive new technology invention, and responsible adoption of the new abilities such technology brings.

Read more »
portrait
Advisory Board Member
Aaron Falk, MS

Aaron Falk is an Engineering Manager at Akamai Technologies, where he leads the Metadata Applications Services Team responsible for safe use of the configuration systems which administer Akamai’s global network of over 200,000 servers. Aaron has worked on diverse networking systems including content distribution networks, environmental sensors, software-defined testbeds for future Internet architectures, and satellite networks for broadband streaming, Internet access, and protected communications. Sometimes this required diving into strategic technologies such as caching, space-based packet switches, and high performance transport protocols. Often it required “cat herding” of researchers & engineers such as when launching, as engineering architect, the NSF-funded GENI project, or when leading four IETF working groups, chairing the Internet Research Task Force, and serving on the Internet Architecture Board.

Aaron is very proud to have worked on commercial projects at Akamai, Verivue, PanAmSat, and Hughes Space & Communications and government-funded projects at BBN Technologies, USC Information Sciences Institute, and TRW Space & Defense. In addition to Aaron’s work at Akamai, he currently chairs the IETF Transport Services (TAPS) working group and serves on the RFC Series Advisory Board and Internet Research Steering Group. Aaron is named on six US patents and received a BS in Electrical Engineering and MS in Systems Engineering at the University of Maryland, College Park.

Read more »
none
Advisory Board Member
Russ Housley

Russ Housley is an expert in security protocols, system engineering and system security architectures, and he has authored many Internet standards. He has over 30 years of communications and computer security experience, and he is the Founder of Vigil Security, LLC. He served as Chair of the Internet Engineering Task Force (IETF) from 2007 to 2013, and as Chair of the Internet Architecture Board (IAB) from 2013 to 2015. He was an IETF Security Area Director from 2003 to 2007, and has also served in leadership positions of the Institute of Electrical and Electronics Engineers (IEEE), including the IEEE 802 Executive Committee in the early 1990s.

Housley has authored several Internet security standards, including the Cryptographic Message Syntax, which provides the foundation for electronic mail security, and the Internet X.509 Certificate Profile, which provides the infrastructure to identify websites and users. In the IEEE, he made significant technical contributions Local Area Network security standards, particularly IEEE 802.10 and IEEE 802.11i, which is implemented as Wi-Fi Protected Access (WPA and WPA2). He is coauthor of two technical books: Planning for PKI and Implementing Email and Security Tokens.

Read more »
portrait
Advisory Board Member
Henrik Levkowetz

Henrik Levkowetz is the Senior Software Developer at Netnod, the organization that runs DNS root-server 'i', and is also writing software for the IETF. He started programming in 1968 at age 13, and has been happily at it since then. In between, he has acquired a Dipl.Ing in Physics, helped design ASICs and calibration algorithms for near-picosecond accuracy frequency counters, and created the tools.ietf.org website for tools related to creation, reading, diffing, and working with RFCs and Internet-Drafts.

Read more »
portrait
Advisory Board Member
Tyson Martin, CISO, CISSP, CRISC, ISA, PCIP, CEH, ECSA

Tyson Martin serves as CISO at The Orvis Company where he is responsible for the evolution and alignment of an information security, risk management, governance, compliance, vulnerability / incident management, solutions delivery, continuity and fraud prevention strategy with this global retailer which has over 160 years of pedigree. With over two decades of experience in information security, risk management, and enterprise technology portfolios across multiple industry domains, Tyson enables competitive advantages and business value through differentiating leadership.

Tyson serves on multiple technology & professional advisory boards, is a progressive thought leader and speaker at security Industry events. He is also a strategic advisor for early and growth stage technology start-ups, provides security market research and intelligence to venture capital and private equity groups. Tyson has attended the CISO Executive Program at Carnegie Mellon University - Heinz College of Information Systems and Public Policy.

Read more »
portrait
Advisory Board Member
Yi Zhao, PhD

Yi Zhao, PhD is the Vice President of Futurewei Technologies, Inc. (Huawei R&D USA), the North America subsidiary of Huawei Technologies, Ltd. headquartered in Shenzhen, China. As its first U.S. employee, Dr. Zhao assisted the parent company in successfully establishing the subsidiary organization in Plano, Texas. During his career in Huawei USA, Dr. Zhao has been in various leadership roles of company’s operation, research and development, sales and marketing, industry standards, business strategy and development, intellectual property rights, as well as the company’s public and industry relations.

Dr. Zhao has over 25 years experience in telecommunications and IT industries. Prior to joining Huawei, Dr. Zhao worked for research institutes (Shanghai Jiao Tong University and The University of Texas at Dallas) and major corporations — Hewlett Packard and Ericsson — in different technical and managerial positions.

Dr. Zhao has served in the board for numbers of forums and committees in ICT industry including Alliance for Telecommunications Industry Solutions (ATIS), IPsphere Forum, Open Patent Alliance (OPA), and International Committee for Information Technology Standards (INCITS). He has been frequently invited to speak to various industry and business forums in the U.S. and China. Dr. Zhao was a board director for the Dallas Regional Chamber and co-chair of the DRC Innovation and Technology Council. He is currently a member of Associate Board for SMU Cox School of Business, and serves as industry advisors to the Eric Johnson Engineering School in the University of Texas at Dallas and the Department of Computer Science and Engineering in SMU.

In 2008, Dr. Zhao received the Distinguished Alumni Award from The University of Texas at Dallas. It is the highest honor bestowed on alumni and is given to individuals who are distinguished in their chosen profession or life’s work and who demonstrate pride in the University. Dr. Zhao has a BSCS and an MSCS from Shanghai Jiao Tong University, and a Ph.D. in computer science from The University of Texas at Dallas.

Read more »