COURSE INFORMATION:
SENG460 Practice of Information Security (2009)
This is a course offered by the Bachelor of Software Engineering (BSEng) program.
This course is designed to address important issues to implement security in the corporate environment and deals with advanced topics in information security management. It is assumed that students have fundamental knowledge of information security.
The course consists of 12 topics in information security and is delivered by 12 security practitioners from government and industry. The topics of the course include Enterprise Security Architecture; International Standards and Best Practices; Security Threat and Risk Assessments; Monitoring; Investigations; Digital Forensics; Application Security; Privacy; Media Handling, Intellectual Property and Asset Disposal; Physical and Environmental Security; Business Continuity Management; and Certificates in Information Security.
Each lecture contains a case study chosen from examples in the field. In each case study, a problem is described and students are asked to build their solutions to the problem either cooperatively or individually. The result of the case study should be summarized individually, developed further, and submitted to Dr. Lee as an assignment. It is encouraged to incorporate further findings into the assignment.
The course pack is available at the Bookstore.
COURSE OUTLINE: SENG460 Course Outline
LECTURE ROOM: Human and Social Development (HSD) Building A240
LECTURE MATERIAL: Available here after each lecture.
| September 11 | Enterprise Security Architecture | Doug Steele |
| September 18 | Security Threat and Risk Assessments | Richard Hakim |
| September 25 | International Standards and Best Practices | Henry Lee |
| October 2 | Monitoring | Steven Radin |
| October 9 | Investigations | Linda Devlin, Roy Watson |
| October 16 | Digital Forensics | Michael Foltinek |
| October 23 | Midterm | Henry Lee |
| October 30 | Application Security | Andrew Law |
| November 6 | Privacy | Jason Eamer-Goult |
| November 13 | Media Handling and Intellectual Property | Ken Prosser |
| November 20 | Physical and Environmental Security | Susan Bedwell |
| November 27 | Business Continuity Management | Graham Bennett |
| December 4 | Certificates in Information Security | Colin Booth |
ASSIGNMENTS: All assignment deliverables must be submitted to Dr. Lee's ECE Dept. mailbox in EOW 448 by 4:30 p.m. on the due date (next Friday after each lecture). A 1% deduction in the overall assignment mark will be made for each day a given deliverable is late.
EXAMINATIONS:
Mid-term at the lecture room on Friday, October 23, 2009 (1:30pm-3:30pm, 2 hours)
Topics for mid-term: Enterprise Security Architecture, Security Threat and Risk Assessments, International Standards and Best Practices, Monitoring, Investigations, and Digital Forensics,
Final at ECS 128 on December 9, 2009 (9:00am-noon, 3 hours)
Topics for final: All
OFFICE HOURS: 11am - noon on Fridays at EOW 419