https://courseoutline.auckland.ac.nz/dco/course/INFOSYS/727/1215

INFOSYS 727 : Advanced Information Security

Business and Economics

2021 Semester Two (1215) (15 POINTS)

Course Prescription

Focuses on technical security issues of the systems used in today's information technology applications. Explores the practical issues of identification and authentication, security of operating systems, cryptography, disaster recovery and contingency planning, and discusses the relevant theoretical models. Managerial aspects of information security issues as well as legal and ethical issues arising from protecting computer files both from a New Zealand and global perspective will be addressed. The course follows the content of CISSP certification.

Course Overview

This course presents technical and organizational arrangements of making information systems more secure. This process starts with presentation of the basic components of digital systems from the perspective of information security: central processing unit, and telecommunication systems, followed by outline of basic parts of security system like firewalls, encryption, intrusion detection systems, etc. Defences against viruses and other malicious software will be discussed. The proper approach to setting up a security system will be presented culminating with development of security polices. Phenomena of cyber terrorism and cyber warfare will also be covered. Integral part of the course are studies of cases of information security breaches.

This course is a next logical step after gaining basic knowledge related to use of information systems in business. After graduation from this course the students will be able to effectively use their information technology tool without fear of being exposed to possible attacks against their IT systems.

Course Requirements

No pre-requisites or restrictions

Capabilities Developed in this Course

Capability 1: Disciplinary Knowledge and Practice
Capability 2: Critical Thinking
Capability 3: Solution Seeking
Capability 4: Communication and Engagement
Graduate Profile: Bachelor of Commerce (Honours)

Learning Outcomes

By the end of this course, students will be able to:
  1. Demonstrate an understanding of advanced knowledge of the information security concepts (security protocols, human-computer interfaces, access control, cryptography and distributed systems issues) (Capability 1)
  2. Evaluate and apply solution solving developmental, managerial and audit issues including the review of the related law, evidence collection and security policies (Capability 2)
  3. Demonstrate critical and creative thinking to formulate and justify appropriate recommendations and/or solutions to an information security problem (Capability 3)
  4. Present an argument in highly structured format and clearly discuss the central ideas (Capability 4.2)
  5. Contribute to own team’s success by helping the team to move forward, participating in setting goals, and articulating alternative ways to solve problems (Capability 4.3)

Assessments

Assessment Type Percentage Classification
9 lab reports 8% Individual Coursework
9 lab tests 12% Individual Coursework
5 Case study reports 20% Group Coursework
5 Case study contributions 10% Individual Coursework
Final Exam 50% Individual Examination
5 types 100%
Assessment Type Learning Outcome Addressed
1 2 3 4 5
9 lab reports
9 lab tests
5 Case study reports
5 Case study contributions
Final Exam
- The minimum pass mark for this course is a C-. However, to progress further in the program you must score at least 25 points from the final examination. Failing to do so will result in the D+ grade irrespective of the coursework results.
- Lowest marked lab report and lab test contribution will not count towards the final grade.
- Active participation in classes or top result for a class test may give you up to 5 bonus points. Detail procedure will be explain in the class. 
- All the submissions deadlines will be strictly observed. Detail procedure will be explain in the class. 

Workload Expectations

The structure of this course reflects the 10 domains of knowledge for obtaining the CISSP certification (CISSP: Certified Information Systems Security Professional). IT includes such professional practices like access control, cryptography, physical security, related regulations, polices, laws, and other organizational categories.

The course is the first step on the way to get CISSP certification or becoming an information security professional.

This course need about 150 hours learning during the semester including:

• 36 contact hours (lectures)

• 9 hours laboratories

• 45 hours self-study

• 60 hours of work on case studies

The key to successful completion of the course without much stress is a regular study during the whole semester.

Attendance at the lectures and class forums is not obligatory but is highly recommended.

Delivery Mode

Campus Experience or Online

This course is offered in two delivery modes:

Campus Experience

Attendance is:

- obligatory at all laboratories, lab tests and examination

- highly recommended at lectures and class forums

- is obligatory at groups project reviews meetings

Lectures will be recorded (voice over PP). No other class activities will be recorded.

The following class activities will be provided online:

- Recordings of lectures and class forums

- Content of lab exercises

- Software supporting lab exercises

- Lab tests

- Study materials

The activities for the course are scheduled as a standard weekly timetable delivery.

Online

All scheduled class activities (lectures, forums, lab exercises and lab tests will be run on line at at scheduled class activities.

All schedule material will be provided online.

Final exam will be run online but format of it will be determined by the university authorities.

The online course activities will follow the standard weekly timetable delivery.

This course runs to the University semester timetable and all the associated completion dates and deadlines will apply.

Learning Resources

Textbook:
• P. Gregory, CISSP Guide to Security Essentials, Course Technology, second edition, 2015, ISBN 978-1-285-06042-2
 Other useful books/materials:
• M. Whitman and H. Mattord, Principles of Information Security, Thomson - Course Technology, 2018, Sixth Edition, ISBN 978-1-337-10206-3
• L. Janczewski and W. Caelli, Cyber Conflicts and Small States, Ashgate, 2016, ISBN 978-1-4724-5219-1
• Software used in lab will be provided by instructors
• Lectures notes distributed via Canvas
• Links to related publications in newspapers, magazines and journals will be provided from time to time.
Students are required to complete the prescribed readings and be fully prepared to contribute to the in-depth discussions. 

Student Feedback

At the end of every semester students will be invited to give feedback on the course and teaching through a tool called SET or Qualtrics. The lecturers and course co-ordinators will consider all feedback and respond with summaries and actions.

Your feedback helps teachers to improve the course and its delivery for future students.

Class Representatives in each class can take feedback to the department and faculty staff-student consultative committees.

During 2021 a class activity will be introduced: Class Forum, run every week, related to previous weeks course activities.

Digital Resources

Course materials are made available in a learning and collaboration tool called Canvas which also includes reading lists and lecture recordings (where available).

Please remember that the recording of any class on a personal device requires the permission of the instructor.

Academic Integrity

The University of Auckland will not tolerate cheating, or assisting others to cheat, and views cheating in coursework as a serious academic offence. The work that a student submits for grading must be the student's own work, reflecting their learning. Where work from other sources is used, it must be properly acknowledged and referenced. This requirement also applies to sources on the internet. A student's assessed work may be reviewed against online source material using computerised detection mechanisms.

Inclusive Learning

All students are asked to discuss any impairment related requirements privately, face to face and/or in written form with the course coordinator, lecturer or tutor.

Student Disability Services also provides support for students with a wide range of impairments, both visible and invisible, to succeed and excel at the University. For more information and contact details, please visit the Student Disability Services’ website http://disability.auckland.ac.nz

Special Circumstances

If your ability to complete assessed coursework is affected by illness or other personal circumstances outside of your control, contact a member of teaching staff as soon as possible before the assessment is due.

If your personal circumstances significantly affect your performance, or preparation, for an exam or eligible written test, refer to the University’s aegrotat or compassionate consideration page https://www.auckland.ac.nz/en/students/academic-information/exams-and-final-results/during-exams/aegrotat-and-compassionate-consideration.html.

This should be done as soon as possible and no later than seven days after the affected test or exam date.

Learning Continuity

In the event of an unexpected disruption we undertake to maintain the continuity and standard of teaching and learning in all your courses throughout the year. If there are unexpected disruptions the University has contingency plans to ensure that access to your course continues and your assessment is fair, and not compromised. Some adjustments may need to be made in emergencies. You will be kept fully informed by your course co-ordinator, and if disruption occurs you should refer to the University Website for information about how to proceed.

Student Charter and Responsibilities

The Student Charter assumes and acknowledges that students are active participants in the learning process and that they have responsibilities to the institution and the international community of scholars. The University expects that students will act at all times in a way that demonstrates respect for the rights of other students and staff so that the learning environment is both safe and productive. For further information visit Student Charter https://www.auckland.ac.nz/en/students/forms-policies-and-guidelines/student-policies-and-guidelines/student-charter.html.

Disclaimer

Elements of this outline may be subject to change. The latest information about the course will be available for enrolled students in Canvas.

In this course you may be asked to submit your coursework assessments digitally. The University reserves the right to conduct scheduled tests and examinations for this course online or through the use of computers or other electronic devices. Where tests or examinations are conducted online remote invigilation arrangements may be used. The final decision on the completion mode for a test or examination, and remote invigilation arrangements where applicable, will be advised to students at least 10 days prior to the scheduled date of the assessment, or in the case of an examination when the examination timetable is published.

Published on 29/11/2020 03:00 p.m.