You are here: American University School of Public Affairs Policy Studies in Cybersecurity

Policy Studies in Cybersecurity

Receive Updates

Contact Us

Phone: (202) 885-2940 Graduate programs: spagrad@american.edu Undergraduate programs: aupublicaffairs@american.edu

Kerwin Hall

Public Affairs, School of 4400 Massachusetts Avenue NW Washington, DC 20016 United States

Back to top

#SPACyber

#SPACyber is a practioner informed, research driven hub of cyber curriculum, thought leadership, and engagement. Focused on the national and homeland security implications of the internet our faculty, students, and partners collaborate around the common goal of understanding and ultimately informing U.S. cyber policy and the organizational structures and leaders who drive it.

Looking for ways to get involved? Whether you are a current student, researcher, practitioner partner or prospective student we want to hear from you and welcome your contributions to our growing community. Sign up to receive updates and let us know more about yourself and your interests--we look forward to hearing from you!

Upcoming Events

Analyzing the New National Cyber Director Role

Online Talk & Interview

Tuesday, January 26, 2021 | 10:00am - 11:00am (ET)
Register

The Cyber Project at Harvard’s Kennedy School welcomes Sasha O’Connell (SPA Executive in Residence & Director of the Terrorism and Homeland Security Policy Master's Program), Kiran Raj (SPA adjunct professor), and Tatyana Bolton (former senior policy director for the U.S. Cyberspace Solarium Commission) in conversation with Lauren Zabierek to analyze the National Cyber Director role.

Sasha and Kiran recently published their report, The United States Needs a Cyber Director: A Roadmap for Making It Happen in 2021. You can access the Cyber Solarium Commission report here.

After the Apocalypse: Cybersecurity

After the Apocalypse: Cybersecurity

As part of the After the Apocalypse series — a series of policy recommendations for the incoming Biden administration - Sasha O'Connell, SPA Executive in Residence & Director of the Terrorism and Homeland Security Policy Master's Program was asked by Inkstick Media to weigh in on how the Biden administration can address cyber security issues.

Past Events

Life on an FBI Cyber Squad

Life on an FBI Cyber Squad

October 21 | 12-1PM ET | Online

American University's School of Public Affairs and the FBI came together to host a first-of-its-kind event, which explored a day in the life of an FBI cyber squad.

The event presented the different technical career paths at the FBI from the people who live it every day. How do a special agent, staff operations specialist, and computer scientist work together to solve a case? What skills and experiences led them down their career paths? What insights could these mid-career professionals offer future applicants?

Cybersecurity in the Remote Workforce

October 22 | 12-1PM ET | Online

Guidehouse and American University were thrilled to host a virtual panel and Q&A session titled "Cybersecurity in the Remote Workforce” as part of their National Cybersecurity Awareness Month programming.


#SPACyber Book Talk Series: Cindy Otis

Video

In "True or False," former CIA analyst Cindy Otis took readers through the history and impact of misinformation over the centuries, sharing stories from the past and insights that readers today can gain from them. Then, she shared lessons learned in over a decade working for the CIA, including actionable tips on how to spot fake news, how to make sense of the information we receive each day, and, perhaps most importantly, how to understand and see past our own information biases, so that we can think critically about important issues and put events happening around us into context.

Curriculum Highlights

JLC-695-002 Applied Cybersecurity in Nonprofit Organizations Practicum

Implementation of information and cybersecurity programs for many organizations are challenging and, often done haphazardly, if at all. Nonprofit organizations face many similar as well as different challenges when it comes to information and cybersecurity. This course will provide students with hands-on experience in the development, delivery, and results from the analysis of cyber and information security assessment process for two local nonprofit organizations. Students will explore how NIST CSF maps to other well-known assessment frameworks including NIST SP800-53, NIST SP800- 171, COBIT 5, and ISO 27000. Students will develop the assessment tool and other research through the lens of the nonprofit environment. Students will complete a controlled assessment of a local nonprofit which will help them develop skills in assessing, through the lens of cyber and information security, a business environment. Students will utilize these skills in bridging the gap between technical jargon and non-technical audiences by preparing and presenting their assessment findings to the executive leadership of the assessed nonprofit. Students will gain a practical ability to perform an information/cybersecurity risk assessment along with the process of developing and delivering the assessment as a part of the students' learning.

Instructor: Dr. Kelley Misata, Founder & CEO, Sightline Security and Executive Director, The Open Information Security Foundation

JLC-695-001 Cyber Incident Response Practicum

This practicum will focus on developing students' knowledge of the roles and responsibilities of various key stakeholders in responding to a serious cybersecurity incident. Students will learn how the U.S. government approaches cyber incidents from a legal, policy, and operational perspective, and how industry, the media, and partner nations must balance the challenges around a quickly unfolding cyber incident with incomplete information. Students will conduct a hands-on simulation of a National Security Council meeting, and role-play media companies, industry groups, and other affected organizations utilizing the policy analysis skills developed throughout this course. As part of the exercise, students will provide policy options to cabinet officials and advocate for particular actions. Following the simulation, students will have the opportunity to brief senior U.S. government officials in key cybersecurity agencies, as well as other cybersecurity experts. Students will gain a practical ability to prepare an incident response plan and develop concise, actionable written and oral policy options.

Instructors:
Iranga Kahangama, Director for Cyber Policy, National Security Council
Jonah Hill, Cyber Security Strategist, U.S. Secret Service

"Cyber policy is a dynamic and quickly-evolving area of U.S. national security policymaking. We're excited to share our experiences with the AU community and to offer a practicum that allows students to understand the challenges and options for responding to a cyber incident at a national level." - Jonah Hill, Instructor

"I’m looking forward to helping develop a strong talent pipeline for public service in the cyber policy sphere” - Iranga Kahangama, Instructor

Welcoming Diana Burley

Diana Burley is American University’s new vice provost for research and professor of Public Administration and Policy at SPA. Her research takes a holistic perspective on cybersecurity, including the strategic development of the cybersecurity workforce, the relationship between technical and human factors, and methods for strengthening cybersecurity posture across a range of institutions. Learn more.

Report Cover

Announcement ·

New American University Report Underscores a Critical Need for a National Cybersecurity Director

Read More

cyber 9/12 flyer

Achievements ·

SPA Team Wins Cybersecurity Competition

Read More

MS Terrorism & Homeland Security Policy

MS Terrorism & Homeland Security Policy

From tactical approaches to strategic solutions.

Learn more

Student Spotlight

Divya Ramjee

Divya Ramjee
PhD Justice, Law & Criminology

"As a doctoral candidate researching cybercrime and intellectual property crime, it is fantastic to be able to be a part of SPACyber. It's truly a unique program in the DMV region that is focused on not only cybersecurity, but also cyber policy and development. It's great to be a part of the team and help teach the next cohorts of cybersecurity professionals and policymakers."