Henry Lee



SENG460    Practice of Information Security (2010)

This is a course offered by the Bachelor of Software Engineering (BSEng) program.

This course is designed to address important issues to implement security in the corporate environment and deals with advanced topics in information security management. It is assumed that students have fundamental knowledge of information security.

The course consists of 11 topics in information security and is delivered by 12 security practitioners from government and industry. The topics of the course include Enterprise Security Architecture; Information Security Policy and International Standards; Security Threat and Risk Assessments; Monitoring; Investigations; Digital Forensics; Application Security; Ethical Hacking; Physical and Environmental Security; Business Continuity Management; and Privacy.

Each lecture contains a case study chosen from examples in the field. In each case study, a problem is described and students are asked to build their solutions to the problem either cooperatively or individually. The result of the case study should be summarized individually, developed further, and submitted to Dr. Lee as an assignment. It is encouraged to incorporate further findings into the assignment.

The course pack is available at the Bookstore.

COURSE OUTLINE: SENG460 Course Outline

LECTURE ROOM: Harry Hickman Building (HHB) 110

LECTURE MATERIAL: Available here after each lecture.

September 10 Enterprise Security Architecture Doug Steele
September 17 Security Policy and International Standards   Henry Lee
September 24 Investigations Roy Watson and Lance Morgan  
October 1 Monitoring Steven Radin
October 8 Security Threat and Risk Assessments Richard Hakim
October 15 Digital Forensics and eDiscovery Pamela Quintero
October 22 Midterm Exam Henry Lee
October 29 Application Security Andrew Law
November 5 Business Continuity Management Graham Bennett
November 12 Reading Week No Lecture
November 19   Ethical Hacking Eric van Wiltenburg
November 26 Physical and Environmental Security Susan Bedwell
December 3 Privacy Jason Eamer-Goult
December 3 Certificates in Information Security Material Only
December 6 Final Exam Henry Lee

ASSIGNMENTS: All assignment deliverables must be submitted to Dr. Lee's ECE Dept. mailbox in EOW 448 by 4:30 p.m. on the due date (the following Friday after each lecture). A 1% deduction in the overall assignment mark will be made for each day a given deliverable is late.

Mid-term at the lecture room on Friday, October 22, 2010 (1:30pm-3:30pm, 2 hours)
Topics for mid-term: Enterprise Security Architecture, Security Policy and International Standards, Investigations, Monitoring, Security Threat and Risk Assessments, Digital Forensics and eDiscovery.

Final at David Strong Building (DSB) C124 on Monday, December 6, 2010 (9:00am -noon, 3 hours)
Topics for final: All

OFFICE HOURS: 11am - noon on Fridays at EOW 419