COURSE INFORMATION:
SENG460 Practice of Information Security and Privacy (2014)
This is a course offered as part of the Bachelor of Software Engineering (BSEng) program.
This course is designed to address important issues to implement security in the corporate environment and deals with advanced topics in information security management. It is assumed that students have fundamental knowledge of information security.
The course consists of 11 topics in information security and is delivered by 11 security practitioners from government and industry. The topics of the course include Enterprise Security Architecture; Information Security Policy and International Standards; Security Threat and Risk Assessments; Logging and Monitoring; Investigations; Ethical Hacking; Application Security; Privacy; Business Continuity Management; Digital Forensics and eDiscovery; and Information Security as a Career.
Each lecture contains a case study chosen from examples in the field. In each case study, a problem is described and students are asked to build their solutions to the problem either cooperatively or individually. The result of the case study should be summarized individually, developed further, and submitted to Dr. Lee as an assignment. It is encouraged to incorporate further findings into the assignment.
The course pack is available at the Bookstore.
COURSE OUTLINE: SENG460 Course Outline
LECTURE ROOM: Clearihue (CLE) Building A202
COURSE OVERVIEW: SENG460 Course Overview Slide
LECTURE MATERIAL: Available here after each lecture.
January 10 | Enterprise Security Architecture | Glenn Mahoney |
January 17 | Security Policy and International Standards | Henry Lee |
January 24 | Security Threat and Risk Assessments | Richard Hakim |
January 31 | Investigations | Lance Morgan |
February 7 | Logging and Monitoring | Steven Radin |
February 14 | Reading Week | No Lecture |
February 21 | Midterm Exam | Henry Lee |
February 28 | Information Security as a Career | Andrew Hughes |
March 7 | Application Security | Andrew Law |
March 14 | Ethical Hacking | Eric van Wiltenburg |
March 21 | Privacy | Jason Eamer-Goult |
March 28 | Business Continuity Management | Graham Bennett |
April 4 | Digital Forensics and eDiscovery | Michael Foltinek |
April 16 | Final Exam | Henry Lee |
ASSIGNMENTS: All assignment deliverables must be submitted to Dr. Lee's ECE Dept. mailbox in EOW 448 by 4:30 p.m. on the due date (the following Friday after each lecture). A 1% deduction in the overall assignment mark will be made for each day a given deliverable is late. After the submission timeline, the late assignment must be submitted via email to Dr. Lee (henrylee at ece dot uvic dot ca) to verify the timestamp of the submission.
EXAMINATIONS:
Mid-term exam at the lecture room on Friday, February 21, 2014 (1:30pm-3:30pm, 2 hours)
Topics for mid-term: Enterprise Security Architecture, Security Policy and International Standards, Security Threat and Risk Assessments, Investigations, and Logging and Monitoring.
Final exam: Wednesday, April 16, 2014 (9am-noon, 3 hours)
Location: ECS 108
Topics for final: All except Information Security as a Career
OFFICE HOURS: 11am - noon on Fridays at TBD