[Monash Home][Monash Info][News and Events][Campuses and Faculties] [Monash University]
SiMS Home
SiMS HomeAbout UsCourses & SubjectsStaffResearchContact
SiMS Home
 
Handbook   Overview   Lectures   Tutorials   Readings   Assessment   Staff   Discussion

IMS3110 : Information Systems Security

lecture will be held Friday 10.00 - 12 noon in the Link Theatre S building

Week

Date

Topics

Readings etc

1

18 July

Brief overview of the unit

and unit outline

Introduction to IS Security in organisations

Assignment 1 and 2 handed out

Lecture 1-Introduction to security

2

25 July

IS Security IS security framework

Breaches, threats and vulnerabilities

Lecture 2-threats, vulnerabilities and breaches

http://www.infoworld.com/article/05/07/25/30NNsecureintel_1.html?source=NLC-SEC2005-07-25

http://www.infoworld.com/article/05/07/25/HNblackhatoracle_1.html

3

1 August

Risk Management: Step 1: Risk analysis and assessment

Week 3 - Risk management_4ppt slides

Week 3 - Risk management_6ppt slides

COBRA approach demonstrates the control relational model
http://www.security-risk-analysis.com/introduction.htm

excellent site for OCTAVE http://www.sei.cmu.edu/publications/documents/99.reports/99tr017/99tr017abstract.html

this is a good site for your assignment and additional reading - please use it -

http://www.bsi.bund.de/english/documents.htm

4

8 August

Risk Management: Step 2: Risk Mitigation (access controls)

PLEASE LOOK AT THE READINGS LINK: Upcoming FREE SANS Webcasts in August

Week 4 - Risk mitigation- access controls_4ppt slides

Week 4 - Risk mitigation-access controls_6ppt slides

5

15 August

Access controls continued: encryption

Graham Farr our Head of School will be guest lecturing on encryption

Week 5 - Risk mitigation - access controls cont/d_4ppt slides

Week 5 - Risk mitigation - access controls cont/d_6ppt slides

6

22 August

E-commerce

Week 6 - Impact of E-commerce on the organisation_4ppt slides

Week 6 - Impact of E-commerce on the organisation_6ppt slides

 

7

29 August

Internet security

Week 7 - Internet - the weakest link _3 ppt

Week 7 - Internet - the weakest link _6 ppt

 

 

8

5 September

Security design

Rick Harvey from Computer Associates will be our guest speaker on Friday. He will be discussing Identity Crime.

Please ensure you attend this lecture.

http://www.cert.org/archive/html/protect-critical-systems.html

 

 

The following chapter might be useful for additional reading - it is not specific to this weeks' lecture

http://my.monash.edu.au/email/attachments/securitymgmtebookv1.pdf?folder=INBOX&id=5251&part=2

9

12 September

week 9 - Security policies and procedures_4ppt

Week 9 - Business continuity plans (BCP) and disaster recovery_4 ppt

Week 9 - Business continuity plans (BCP) and disaster recovery_6 ppt

PLEASE NOTE YOUR ASSIGNMENT 2

DUE DATE HAS BEEN ADJUSTED TO HAND IN

IN WEEK 11 ON FRIDAY 7 OCTOBER AT 5 PM

LEVEL 7 S BUILDING

 

10

19 September

The following webcasts are available for your use. You are able to download the ppt slides. but you will need to log in to access the different webcasts. and can be located at: http://www.gocsi.com/links/webcasts.jhtml

  • Establishing a Phishing Response Strategy: A CSI Editorial Perspectives TechWebCast
    Wednesday, September 28, 2005
    9:00 AM PT / 11:00 AM CT / 12:00 PM ET
    Every corporation should have a strategy to protect against phishing attacks and to react to attempts. In this presentation will we discuss how to best protect your corporation and show how a successful program was developed and implemented.
    Register Now
  • Common Attacks Against Web Applications and Web Services: A CSI and Secure Enterprise Editorial Perspectives TechWebCast
    Tuesday, September 13, 2005
    9:00 AM PT / 11:00 AM CT / 12:00 PM ET
    In this live, interactive TechWebcast, you will discover the major topic areas to improve security and prevent attacks against web applications and services.
    Register Now
  • Penetration Testing: Taking the Guess Work out of Vulnerability Management: A CSI and Secure Enterprise Editorial Perspectives TechWebCast
    Thursday, September 8, 2005
    1:00 PM PT / 3:00 PM CT / 4:00 PM ET
    Simply identifying potential problems on your network and systems is no longer good enough. As a security or network professional, you must know the real risks and implications of vulnerabilities and regularly test the effectiveness of your network defenses. This TechWebcast will show you how penetration testing software can efficiently and easily help you address these challenges.
    View the Webcast.
  • Best Practices in Approaching Patch Management
    Tuesday, May 19, 2005
    Learn about the operations and security process of patch management. Develop strategies about software and configuration management lifestyle and overcome your patch management challenges.
    Featured Speakers: Bill Stackpole, Engagement Manager, Microsoft Corporation
    Chris Andrew, Vice President of Product Management, PatchLink Corporation
    View the Webcast.
  • Handheld Device Security Webcast
    Tuesday, May 3, 2005
    Join Burton Group and CSI to learn more about the threats associated handheld devices and the solutions that will help you properly manage risk. Webcast attendees will also gain a better understanding of the complexity of handheld devices and how it equates to risk.
    View the Webcast.
  • 31st Annual Computer Security Conference - Selected Sessions
    November 14 -16, 2004
    Frank Abagnale
    The Information Security Experience - Marianne M. Emerson
    Risk Management for Security and Business - Thomas Peltier
    Spooks in the Machine: Spyware and Adware Threats and Countermeasures - Fred L. Trickey
    Economic Aspects of Cybersecurity - Dr. Lawrence A. Gordon
    Breaking Wireless Security - Aaron Earle
    Security Trends from the Practitioner's Perspective - Terri Curran
    Security and Outsourcing - John O'Leary
    Host Intrusion Prevention: Defining a Strategy and Choosing a Solution - Roger Fradenburgh
    Information Security Executive (ISE) of the Year National Award 2004
    View the Webcasts.
  • Measuring What You Have, Knowing What You Need
    Wednesday, October 27, 2004
    Learn how to design a security program with measurable objectives and a strategic plan. Hosted by Robert Richardson & Hugh Voigt, President & CEO, Espiria .
    View the Webcast.
  • Defending Your Network: IDS, VPN and Web Content Filters
    Tuesday, October 19, 2004
    Defending your network from all of the worms, viruses and unwanted access is a full time job. So what does a system administrator need to defend the network they are responsible for?
    View the Webcast.

 

The webcasts shown in the table to your left

will replace the lecture today. However you will be required

to present one of these webcasts at the tutorial this week.

You may play these webcasts at any time and

anywhere as long as you have internet access.

I am particularly interested in you listening to

the following webcast: as this topic has been missed.

Measuring What You Have, Knowing What You Need
Wednesday, October 27, 2004
Learn how to design a security program with measurable objectives and a strategic plan. Hosted by Robert Richardson & Hugh Voigt, President & CEO, Espiria .
View the Webcast.

 

 

26 Sept to 30 Sept

MID SEMESTER BREAK

11

3 October

Week 11 - Privacy and the law - 4 ppt

Week 11 - Privacy and the law - 6 ppt

 

Video - The Game - Four Corners Report

Email fraud

 

12

10 October

Neal Wise from Assurance Company will be our guest lecturer this week

Please ensure you attend this lecture.

PLEASE NOTE ALL CONTENT IS EXAMINABLE.

Neal wise - pdf wireless slides

 

13

17 October

Week 13 - Current and future trends_4ppt

Week 13 - Current and future trends_6ppt

Review and Revision

Review and revision

 

Australian government research report on e_crime -please ensure you bring questions to the lecture this Friday

2003 exam paper

here are some sites you might find useful
http://www.security-manual.com

14

25 October

Examinations commence

 

 
HelpContactsSite MapStaff DirectorySearch

Return to the Top of the PageMonash University ABN 12 377 614 012. Copyright 1994-2001 Monash University - Caution - Privacy
SIMS is part of the Faculty of Information Technology -

Authorised by: Head of School. Maintained by: Sue Foster