An in-depth study of the theories and practices for prevention of cyber-attacks. Countermeasures discussed include training, encryption, VPN’s, policies, practices, access controls, secure systems development, software assurance arguments, verification and validation, firewall architectures, anti-virus, patching practices, personnel security practices, and physical security practices. Business continuity plans and disaster recovery plans (BCP, DRP) are also discussed. Strategies for large-scale prevention are also discussed, such as critical infrastructure protection, international collaboration, and law enforcement. Credit 3 hours. Prerequisite ITSC 230. Offered Fall Semesters.