SEC320 - Security Incident Response

Outline information
Semester
Schools offering this subject
Last revision date Jun 8, 2021 1:57:03 PM
Last review date Jun 8, 2021 1:57:03 PM

Subject Title
Security Incident Response

Subject Description
Threat landscape is continuously evolving and despite all the efforts, adversaries penetrate networks for a variety of purposes, such as theft of confidential information, sabotage and money extortion.  Therefore, it is important for all of the cybersecurity workforces to be familiar with the process and technologies used in cyber incident response. This course is prepared to cover a variety of topics, from preparation, detection and analysis, intelligence, and response automation. Students will perform live and dead box forensics, create timelines and develop scripts to automate their processes in order to rapidly respond to cyber incidents.

Credit Status
One Credit

Learning Outcomes
Upon successful completion of this subject the student will be able to:

  • Understand incident response lifecycle to prepare, detect and contain cyber security incidents
  • Identify different incident types to categorize them and leverage proper processes and technologies
  • Develop cyber security incident response playbooks to formalize the response process for certain incidents
  • Perform live and dead box forensics to develop and identify tactics, techniques and procedures of an adversary
  • Perform basic static and dynamic malware analysis to rapidly generate indicator of compromises for malware incidents
  • Formulate automated response workflows to expedite response process and lower the mean time to respond
  • Collect cyber threat intelligence of a threat actor to correlate techniques, tactics and procedures to an ongoing investigation
  • Conduct response investigations on cloud environments to assess and discover cyber breaches

Essential Employability Skills

    •  Communicate clearly, concisely and correctly in the written, spoken and visual form that fulfils the purpose and meets the needs of the audience.

    •  Respond to written, spoken, or visual messages in a manner that ensures effective communication.

    •  Execute mathematical operations accurately.

    •  Apply a systematic approach to solve problems.

    •  Use a variety of thinking skills to anticipate and solve problems.

    •  Locate, select, organize, and document information using appropriate technology and information systems.

    •  Analyze, evaluate, and apply relevant information from a variety of sources.

    •  Show respect for diverse opinions, values, belief systems, and contributions of others.

    •  Interact with others in groups or teams in ways that contribute to effective working relationships and the achievement of goals.

    •  Manage the use of time and other resources to complete projects.

    •  Take responsibility for one's own actions, decisions, and consequences.

Academic Integrity
Seneca upholds a learning community that values academic integrity, honesty, fairness, trust, respect, responsibility and courage. These values enhance Seneca's commitment to deliver high-quality education and teaching excellence, while supporting a positive learning environment. Ensure that you are aware of Seneca's Academic Integrity Policy which can be found at: http://www.senecacollege.ca/about/policies/academic-integrity-policy.html Review section 2 of the policy for details regarding approaches to supporting integrity. Section 2.3 and Appendix B of the policy describe various sanctions that can be applied, if there is suspected academic misconduct (e.g., contract cheating, cheating, falsification, impersonation or plagiarism).

Please visit the Academic Integrity website http://open2.senecac.on.ca/sites/academic-integrity/for-students to understand and learn more about how to prepare and submit work so that it supports academic integrity, and to avoid academic misconduct.

Discrimination/Harassment
All students and employees have the right to study and work in an environment that is free from discrimination and/or harassment. Language or activities that defeat this objective violate the College Policy on Discrimination/Harassment and shall not be tolerated. Information and assistance are available from the Student Conduct Office at student.conduct@senecacollege.ca.

Accommodation for Students with Disabilities
The College will provide reasonable accommodation to students with disabilities in order to promote academic success. If you require accommodation, contact the Counselling and Accessibility Services Office at ext. 22900 to initiate the process for documenting, assessing and implementing your individual accommodation needs.