Southern Utah University

Course Syllabus

Back to Syllabus Search | Browse by Department
Southern Utah University
Southern Utah University
Spring Semester 2026

Cyber Threat Intelligence II (Online)

CSIA 6270-B70

Course: CSIA 6270-B70
Credits: 3
Term: Spring Semester 2026
Department: CSIS
CRN: 10614

Course Description

This course will cover advanced Cyber Threat Intelligence (CTI) concepts, threat hunting, and applying CTI analysis to operational environments. Students will gain a deeper understanding of these areas that are necessary to work in, manage, or lead at the executive or board level an effective security program, Security Operations Center (SOC), or Cyber Defense Center (CDC). (Spring - 2nd Session) [Graded (Standard Letter)] Registration Restriction(s): CSIA students only or program director permission.

Required Texts


This course does not have a textbook. In each of module overview pages you will find various articles and content to assist you with this course. It is important that you thoroughly read or listen to all resources provided.

Learning Outcomes


By the end of this course, you will be able to:

  • Discuss pyramid of pain and cyber kill chains
  • Discuss MITRE ATT&CK and MITRE D3FEND
  • Discuss threat hunting and Sigma, Yara, and Kestrel rules
  • Discuss the threat intelligence life cycle, automated response, and indicators of behavior
  • Discuss the cyber defense matrix
  • Discuss cutting edge technologies for operationalizing CTI at scale and in cyber relevant time
  • Discuss ways to use CTI to enable prevention, detection, mitigation, remediation, and attack simulation of advanced threats (APTs).
  • Review and discuss threat reports and an APT report

Course Requirements

Students are required to review the course content and complete the assignments.

Course Outline

This course has 6 modules that will focus on (but are not limited to):
  • Module 1: This module will introduce the concepts for more advanced analysis and intelligence. We will cover the Pyramid of Pain and what this tells us about IOCs, the Cyber Kill Chain and how threat actors use it, and we will review another Threat Report.
  • Module 2: This module will introduce MITRE ATT&CK and MITRE D3FEND and how they can be used in modern and advanced Security Operation Centers (SOCs) to better understand and defend against threat actor activity. In addition we will review another threat report.
  • Module 3: This module will introduce the concept of threat hunting along with Sigma, Yara, and Kestrel rules that can be used to detect malicious activity.
  • Module 4: This module will introduce the Threat Intelligence Life Cycle, Automated Response, and Indicators of Behavior.
  • Module 5: This module will introduce the Cyber Defense Matrix and another threat report.
  • Module 6: This module will focus on an APT with the goal of learning how this attack was carried out, what happened, and how could threat intelligence help going forward.

Instructor's policies on late assignments and/or makeup work

There is no extra credit or do-overs, and your lowest grade will not be dropped. You are responsible for every assignment, and the expectation is that you will complete all assignments and submit them on time.

Late assignments will NOT be accepted without prior written authorization and due to a legitimate emergency. If you miss the cut off, your assignment is late and will receive a grade of zero. The only exception is an extension granted by the instructor for extreme emergencies (procrastination, vacations, hangovers, and "computer problems" are examples of things that are NOT emergencies). Requests for extensions MUST be submitted in writing with appropriate, 3rd-party (e.g. - doctor) documentation of the reason for the request and showing that you were physically unable to work on the assignment for the entire time the assignment was available. There are no make-up exams or quizzes. If you miss a quiz or exam, you will receive a grade of zero. Due dates for quizzes, discussion, exams, and assignments are stated clearly in Canvas and on the Course Schedule.

Your assignment will receive a grade of zero for the following:

  • Late submissions without prior approval in writing
  • Submissions emailed to the instructor
  • Submissions attached to the comments in Canvas
  • Submissions that are copied from other sources, including other students
  • Individual assignments done as a group
  • Assignments that students forgot to submit
  • Assignments obviously done by someone other than the enrolled student or AI

Your assignment will have deductions for grammar and spelling mistakes and not following the assignment length requirements.

All course assignments are to be submitted in the appropriate place in Canvas. Under no circumstances will work be accepted after the last day of classes.

Attendance Policy

This is an online course. This means that you must plan accordingly to meet the deadlines for assignments. 

Course Fees

https://www.suu.edu/registrar/course-fees.html

ADA Statement

Students with medical, psychological, learning, or other disabilities desiring academic adjustments, accommodations, or auxiliary aids will need to contact the Disability Resource Center, located in Room 206F of the Sharwan Smith Center or by phone at (435) 865-8042. The Disability Resource Center determines eligibility for and authorizes the provision of services.

If your instructor requires attendance, you may need to seek an ADA accommodation to request an exception to this attendance policy. Please contact the Disability Resource Center to determine what, if any, ADA accommodations are reasonable and appropriate.

Academic Credit

According to the federal definition of a Carnegie credit hour: A credit hour of work is the equivalent of approximately 60 minutes of class time or independent study work. A minimum of 45 hours of work by each student is required for each unit of credit. Credit is earned only when course requirements are met. One (1) credit hour is equivalent to 15 contact hours of lecture, discussion, testing, evaluation, or seminar, as well as 30 hours of student homework. An equivalent amount of work is expected for laboratory work, internships, practica, studio, and other academic work leading to the awarding of credit hours. Credit granted for individual courses, labs, or studio classes ranges from 0.5 to 15 credit hours per semester.

Academic Freedom

SUU is operated for the common good of the greater community it serves. The common good depends upon the free search for truth and its free exposition. Academic Freedom is the right of faculty to study, discuss, investigate, teach, and publish. Academic Freedom is essential to these purposes and applies to both teaching and research.

Academic Freedom in the realm of teaching is fundamental for the protection of the rights of the faculty member and of you, the student, with respect to the free pursuit of learning and discovery. Faculty members possess the right to full freedom in the classroom in discussing their subjects. They may present any controversial material relevant to their courses and their intended learning outcomes, but they shall take care not to introduce into their teaching controversial materials which have no relation to the subject being taught or the intended learning outcomes for the course.

As such, students enrolled in any course at SUU may encounter topics, perspectives, and ideas that are unfamiliar or controversial, with the educational intent of providing a meaningful learning environment that fosters your growth and development. These parameters related to Academic Freedom are included in SUU Policy 6.6.

Academic Misconduct

Scholastic honesty is expected of all students. Dishonesty will not be tolerated and will be prosecuted to the fullest extent (see SUU Policy 6.33). You are expected to have read and understood the current SUU student conduct code (SUU Policy 11.2) regarding student responsibilities and rights, the intellectual property policy (SUU Policy 5.52), information about procedures, and what constitutes acceptable behavior.

Please Note: The use of websites or services that sell essays is a violation of these policies; likewise, the use of websites or services that provide answers to assignments, quizzes, or tests is also a violation of these policies. Regarding the use of Generative Artificial Intelligence (AI), you should check with your individual course instructor.

Emergency Management Statement

In case of an emergency, the University's Emergency Notification System (ENS) will be activated. Students are encouraged to maintain updated contact information using the link on the homepage of the mySUU portal. In addition, students are encouraged to familiarize themselves with the Emergency Response Protocols posted in each classroom. Detailed information about the University's emergency management plan can be found at https://www.suu.edu/emergency.

HEOA Compliance Statement

For a full set of Higher Education Opportunity Act (HEOA) compliance statements, please visit https://www.suu.edu/heoa. The sharing of copyrighted material through peer-to-peer (P2P) file sharing, except as provided under U.S. copyright law, is prohibited by law; additional information can be found at https://my.suu.edu/help/article/1096/heoa-compliance-plan.

You are also expected to comply with policies regarding intellectual property (SUU Policy 5.52) and copyright (SUU Policy 5.54).

Mandatory Reporting

University policy (SUU Policy 5.60) requires instructors to report disclosures received from students that indicate they have been subjected to sexual misconduct/harassment. The University defines sexual harassment consistent with Federal Regulations (34 C.F.R. Part 106, Subpart D) to include quid pro quo, hostile environment harassment, sexual assault, dating violence, domestic violence, and stalking. When students communicate this information to an instructor in-person, by email, or within writing assignments, the instructor will report that to the Title IX Coordinator to ensure students receive support from the Title IX Office. A reporting form is available at https://cm.maxient.com/reportingform.php?SouthernUtahUniv

Non-Discrimination Statement

SUU is committed to fostering an inclusive community of lifelong learners and believes our university's encompassing of different views, beliefs, and identities makes us stronger, more innovative, and better prepared for the global society.

SUU does not discriminate on the basis of race, religion, color, national origin, citizenship, sex (including sex discrimination and sexual harassment), sexual orientation, gender identity, age, ancestry, disability status, pregnancy, pregnancy-related conditions, genetic information, military status, veteran status, or other bases protected by applicable law in employment, treatment, admission, access to educational programs and activities, or other University benefits or services.

SUU strives to cultivate a campus environment that encourages freedom of expression from diverse viewpoints. We encourage all to dialogue within a spirit of respect, civility, and decency.

For additional information on non-discrimination, please see SUU Policy 5.27 and/or visit https://www.suu.edu/nondiscrimination.

Pregnancy

Students who are or become pregnant during this course may receive reasonable modifications to facilitate continued access and participation in the course. Pregnancy and related conditions are broadly defined to include pregnancy, childbirth, termination of pregnancy, lactation, related medical conditions, and recovery. To obtain reasonable modifications, please make a request to title9@suu.edu. To learn more visit: https://www.suu.edu/titleix/pregnancy.html.

Disclaimer Statement

Information contained in this syllabus, other than the grading, late assignments, makeup work, and attendance policies, may be subject to change with advance notice, as deemed appropriate by the instructor.