Computer Application Security (Optional Co-op)
- Credential:
- Ontario College Graduate Certificate
- College Code:
- CONS
- School:
- Engineering & Information Technology
- Program Code:
- 1476
- Accelerated Delivery:
- No
- Campus:
- WA
- Academic Year:
- 2019 / 2020
Notice:
Students in this program are required to bring a mobile device that meets minimum specified requirements.About the Program
Due to the increasing complexity of computer transactions and society's increasing dependence on eCommerce, as well as the proliferation of computing devices, the computer security field has become a high profile and rapidly growing, industry. Work in this field is constantly evolving and leads to a range of career options, from positions that require a high level of technological sophistication to higher-level management positions. This graduate certificate program will be attractive to graduates of software development programs, who will then learn the application security and networking skills needed to access entry level positions offered by a wide range of software development companies. Students will learn to secure software applications, including networked, web and mobile applications, against threats by malware and hackers. These skills will be augmented with management skills so that graduates will also be able to access careers as corporate security analysts and managers. Students benefit from specialized courses taught by highly qualified industry experts and as a result, should expect to have classes scheduled up until 8:00 p.m.The optional co-op stream includes one co-op work term.
For more information, please contact the Program Coordinator at itprograms@conestogac.on.ca.
Program Information
Length: One-year Ontario College Graduate Certificate programDelivery Sequence:
Waterloo - September/2019 - Fall | Winter
Waterloo - January/2020 - Winter | Spring/Summer
Waterloo - May/2020 - Spring/Summer | Fall
Location: Waterloo
Start: September, January and May
First-Year Capacity: 33
Admission Requirements
- A diploma or degree in any of these areas:
- computer science
- software engineering
- software engineering technology
- computer programmer/analyst
- IT innovation and design
- computer or mobile applications development OR
- A graduate certificate in computer applications development or mobile solutions development. Other relevant disciplines that offer a significant degree of software development in their curriculum (such as health informatics) may also be considered.
Note re: Admission Requirements
- Applicants with documents (transcripts) from an educational institution from a country other than Canada must have their documents evaluated for equivalency at an approved provider of credential evaluation services. Applicants to this program require a Comprehensive or Course-by-Course Report. Please see How to Apply for more information.
- Applicants with transcripts from institutions where the language of instruction is not English must demonstrate English language proficiency with a minimum test score on one of the following language proficiency tests or equivalent scores from another internationally recognized English language test:
- TOEFL iBT 88
- IELTS 6.5 with no bands less than 6.0
- CAEL 70 with no sub-test band scores less than 60
- PTE Academic 58
- Conestoga English Language Test (CELT) Band 6
- We offer a language program for students whose English language skills are below the standard required for admission but all other admission criteria have been met. You will be eligible for admission to the graduate certificate program after completion of level 4 of the General Arts and Science - English Language Studies (ELS) program with an overall grade average of 80% and no grade less than 75%. Your placement in the ELS program is determined by scores on an in-house English language test or TOEFL or IELTS.
Applying to the Co-op Stream
- All applicants apply to the non co-op program. Students will be informed of the application deadline and process to apply for the Co-op Stream. Labour market conditions determine co-op seats in optional co-op programs. Every student who meets academic eligibility requirements may not be admitted to the co-op stream.
- To be considered for admission to the co-op stream, students are required to achieve a minimum overall SWA of 3.75 (80% session weighted average) in Level 1 with no dropped or failed courses.
Co-op Information
- Co-op programs add value to your education. Earn while you apply what you learn in a real workplace environment. See the Co-op webpages for more details.
- The College cannot guarantee co-op employment. All co-op students are required to conduct an independent co-op job search in addition to the supports and services provided by the Department of Co-op Education.
- Students are responsible for their own transportation and associated costs in order to complete work term requirements. Work locations may not always be readily accessible by public transportation.
Admission Procedures
- Final selection is made following an assessment of the admission requirements.
Program Requirements
- This program is designed for the mature learner. Students will be required to carry out independent research and learning throughout the program.
- Students in this program are required to bring a mobile device that meets minimum specified requirements.
- Students are expected to have a working knowledge of personal computers including word processing, spreadsheets, presentation software and the internet. Students will be required to perform computer work for course work and projects outside of class. Keyboarding skills are required.
- Academic eligibility for a co-op work term is based on the term that occurs two terms prior to any work term. Should a student's academic performance decline considerably (including cumulative missed courses) during the term just prior to any work term, the college reserves the right to withdraw the student from the upcoming work term.
- Students may only fail/defer one work term regardless of the reason(s).
- Students who do not successfully complete their deferred work term will be removed from the co-op stream.
- Since only one work term may be failed/deferred regardless of the reason(s), should a subsequent work term be missed/failed/unsecured (not successfully completed for any reason) the student will be immediately removed from the co-op stream.
- Students who are discontinued are not eligible for co-op work terms.
Tuition & Fees
Tuition fee details for the 2018-2019 year are listed below. Fees for the next academic year are unavailable at this time. Books and supplies are additional.
Non Co-op Program Fees
Domestic Fees
Estimated fees based upon the previous academic year (2018 / 2019) for Computer Application Security - Program # 1476
| Description | Fall 2018 |
|---|---|
| Student Priority Fee | $50.65 |
| Recreation/Athletics Fee | $70.50 |
| Graduation/Alumni Services Fee | $28.45 |
| Administration Fee | $25.90 |
| Technology Enhancement Fee | $142.75 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $72.65 |
| CSI Association Fee | $110.00 |
| CSI - Advocacy Fee | $5.75 |
| Program Tuition Fee (ACR) | $2724.00 |
| CSI Health Plan Fee | $295.00 |
| ONE Card Fee | $12.75 |
| CSI Legal Protection | $28.00 |
| Session Total | $3566.40 |
| Year Total | $3566.40 |
| Description | Fall 2018 | Winter 2019 |
|---|---|---|
| Student Priority Fee | $50.65 | $50.65 |
| Graduation/Alumni Services Fee | $28.45 | $28.45 |
| Administration Fee | $25.90 | $25.90 |
| Technology Enhancement Fee | $142.75 | $142.75 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Association Fee | $82.50 | $82.50 |
| CSI - Advocacy Fee | $5.75 | $5.75 |
| Program Tuition Fee (ACR) | $2724.00 | $2724.00 |
| CSI Health Plan Fee | $295.00 | $0.00 |
| ONE Card Fee | $12.75 | $12.75 |
| CSI Legal Protection | $28.00 | $0.00 |
| CSI Capital Development Fee - Waterloo | $0.00 | $48.00 |
| Session Total | $3395.75 | $3120.75 |
| Year Total | $6516.50 |
| Description | Winter 2019 | Spring 2019 |
|---|---|---|
| Student Priority Fee | $50.65 | $50.65 |
| Graduation/Alumni Services Fee | $28.45 | $28.45 |
| Administration Fee | $25.90 | $25.90 |
| Technology Enhancement Fee | $142.75 | $142.75 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Association Fee | $82.50 | $82.50 |
| CSI - Advocacy Fee | $5.75 | $5.75 |
| Program Tuition Fee (ACR) | $2724.00 | $2724.00 |
| CSI Health Plan Fee | $206.50 | $0.00 |
| ONE Card Fee | $12.75 | $12.75 |
| CSI Legal Protection | $18.76 | $0.00 |
| CSI Capital Development Fee - Waterloo | $48.00 | $48.00 |
| Session Total | $3346.01 | $3120.75 |
| Year Total | $6466.76 |
| Description | Spring 2019 |
|---|---|
| Student Priority Fee | $50.65 |
| Graduation/Alumni Services Fee | $28.45 |
| Administration Fee | $25.90 |
| Technology Enhancement Fee | $142.75 |
| Program Services Fee | $0.00 |
| CSI Association Fee | $82.50 |
| CSI - Advocacy Fee | $5.75 |
| Program Tuition Fee (ACR) | $2724.00 |
| CSI Health Plan Fee | $115.05 |
| ONE Card Fee | $12.75 |
| CSI Legal Protection | $18.76 |
| CSI Capital Development Fee - Waterloo | $48.00 |
| Session Total | $3254.56 |
| Year Total | $3254.56 |
International Fees
Estimated International fees based upon the previous academic year (2018 / 2019) for
Computer Application Security - Program # 1476
| Description | Fall 2018 |
|---|---|
| International Program Tuition | $6000.00 |
| Student Priority Fee | $50.65 |
| Recreation/Athletics Fee | $70.50 |
| Graduation/Alumni Services Fee | $28.45 |
| Administration Fee | $25.90 |
| Technology Enhancement Fee | $142.75 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $72.65 |
| CSI Association Fee | $110.00 |
| CSI - Advocacy Fee | $5.75 |
| CSI Health Plan Fee | $295.00 |
| ISR | $375.00 |
| ONE Card Fee | $12.75 |
| CSI Legal Protection | $28.00 |
| CSI International Health Fee | $485.00 |
| Session Total | $7702.40 |
| Year Total | $7702.40 |
| Description | Fall 2018 | Winter 2019 |
|---|---|---|
| International Program Tuition | $6000.00 | $6000.00 |
| Student Priority Fee | $50.65 | $50.65 |
| Graduation/Alumni Services Fee | $28.45 | $28.45 |
| Administration Fee | $25.90 | $25.90 |
| Technology Enhancement Fee | $142.75 | $142.75 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Association Fee | $82.50 | $82.50 |
| CSI - Advocacy Fee | $5.75 | $5.75 |
| CSI Health Plan Fee | $295.00 | $0.00 |
| ISR | $375.00 | $375.00 |
| ONE Card Fee | $12.75 | $12.75 |
| CSI Legal Protection | $28.00 | $0.00 |
| CSI Capital Development Fee - Waterloo | $0.00 | $48.00 |
| CSI International Health Fee | $485.00 | $0.00 |
| Session Total | $7531.75 | $6771.75 |
| Year Total | $14303.50 |
| Description | Winter 2019 | Spring 2019 |
|---|---|---|
| International Program Tuition | $6000.00 | $6000.00 |
| Student Priority Fee | $50.65 | $50.65 |
| Graduation/Alumni Services Fee | $28.45 | $28.45 |
| Administration Fee | $25.90 | $25.90 |
| Technology Enhancement Fee | $142.75 | $142.75 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Association Fee | $82.50 | $82.50 |
| CSI - Advocacy Fee | $5.75 | $5.75 |
| CSI Health Plan Fee | $206.50 | $0.00 |
| ISR | $375.00 | $375.00 |
| ONE Card Fee | $12.75 | $12.75 |
| CSI Legal Protection | $18.76 | $0.00 |
| CSI Capital Development Fee - Waterloo | $48.00 | $48.00 |
| CSI International Health Fee | $324.95 | $0.00 |
| Session Total | $7321.96 | $6771.75 |
| Year Total | $14093.71 |
| Description | Spring 2019 |
|---|---|
| International Program Tuition | $6000.00 |
| Student Priority Fee | $50.65 |
| Graduation/Alumni Services Fee | $28.45 |
| Administration Fee | $25.90 |
| Technology Enhancement Fee | $142.75 |
| Program Services Fee | $0.00 |
| CSI Association Fee | $82.50 |
| CSI - Advocacy Fee | $5.75 |
| CSI Health Plan Fee | $115.05 |
| ISR | $375.00 |
| ONE Card Fee | $12.75 |
| CSI Legal Protection | $18.76 |
| CSI Capital Development Fee - Waterloo | $48.00 |
| CSI International Health Fee | $160.05 |
| Session Total | $7065.61 |
| Year Total | $7065.61 |
Co-op Program Fees
Optional Co-op Domestic Fees
Estimated fees based upon the previous academic year (2018 / 2019) for Computer Application Security (Optional Co-op) - Program # 1476C
| Description | Fall 2018 | Winter 2019 |
|---|---|---|
| Student Priority Fee | $50.65 | $0.00 |
| Recreation/Athletics Fee | $70.50 | $0.00 |
| Graduation/Alumni Services Fee | $28.45 | $0.00 |
| Administration Fee | $25.90 | $0.00 |
| Technology Enhancement Fee | $142.75 | $0.00 |
| Program Services Fee | $543.50 | $0.00 |
| CSI Capital Development Fee | $72.65 | $0.00 |
| CSI Association Fee | $110.00 | $0.00 |
| CSI - Advocacy Fee | $5.75 | $0.00 |
| Program Tuition Fee (ACR) | $2724.00 | $0.00 |
| CSI Health Plan Fee | $295.00 | $0.00 |
| ONE Card Fee | $12.75 | $0.00 |
| CSI Legal Protection | $28.00 | $0.00 |
| Session Total | $4109.90 | $0.00 |
| Year Total | $4109.90 |
| Description | Fall 2018 |
|---|---|
| Student Priority Fee | $0.00 |
| Recreation/Athletics Fee | $0.00 |
| Graduation/Alumni Services Fee | $0.00 |
| Administration Fee | $0.00 |
| Technology Enhancement Fee | $0.00 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $0.00 |
| CSI Association Fee | $0.00 |
| CSI - Advocacy Fee | $0.00 |
| Program Tuition Fee (ACR) | $0.00 |
| CSI Health Plan Fee | $0.00 |
| ONE Card Fee | $0.00 |
| CSI Legal Protection | $0.00 |
| Session Total | $0.00 |
| Year Total |
| Description | Winter 2019 | Spring 2019 |
|---|---|---|
| Student Priority Fee | $50.65 | $0.00 |
| Graduation/Alumni Services Fee | $28.45 | $0.00 |
| Administration Fee | $25.90 | $0.00 |
| Technology Enhancement Fee | $142.75 | $0.00 |
| Program Services Fee | $543.50 | $0.00 |
| CSI Association Fee | $82.50 | $0.00 |
| CSI - Advocacy Fee | $5.75 | $0.00 |
| Program Tuition Fee (ACR) | $2724.00 | $0.00 |
| CSI Health Plan Fee | $206.50 | $0.00 |
| ONE Card Fee | $12.75 | $0.00 |
| CSI Legal Protection | $18.76 | $0.00 |
| CSI Capital Development Fee - Waterloo | $48.00 | $0.00 |
| Session Total | $3889.51 | $0.00 |
| Year Total | $3889.51 |
| Description | Spring 2019 |
|---|---|
| Student Priority Fee | $50.65 |
| Graduation/Alumni Services Fee | $28.45 |
| Administration Fee | $25.90 |
| Technology Enhancement Fee | $142.75 |
| Program Services Fee | $543.50 |
| CSI Association Fee | $82.50 |
| CSI - Advocacy Fee | $5.75 |
| Program Tuition Fee (ACR) | $2724.00 |
| CSI Health Plan Fee | $115.05 |
| ONE Card Fee | $12.75 |
| CSI Legal Protection | $18.76 |
| CSI Capital Development Fee - Waterloo | $48.00 |
| Session Total | $3798.06 |
| Year Total | $3798.06 |
Optional Co-op International Fees
Estimated International fees based upon the previous academic year (2018 / 2019) for
Computer Application Security (Optional Co-op) - Program # 1476C
| Description | Fall 2018 | Winter 2019 |
|---|---|---|
| International Program Tuition | $6000.00 | $0.00 |
| Student Priority Fee | $50.65 | $0.00 |
| Recreation/Athletics Fee | $70.50 | $0.00 |
| Graduation/Alumni Services Fee | $28.45 | $0.00 |
| Administration Fee | $25.90 | $0.00 |
| Technology Enhancement Fee | $142.75 | $0.00 |
| Program Services Fee | $543.50 | $0.00 |
| CSI Capital Development Fee | $72.65 | $0.00 |
| CSI Association Fee | $110.00 | $0.00 |
| CSI - Advocacy Fee | $5.75 | $0.00 |
| CSI Health Plan Fee | $295.00 | $0.00 |
| ISR | $375.00 | $0.00 |
| ONE Card Fee | $12.75 | $0.00 |
| CSI Legal Protection | $28.00 | $0.00 |
| CSI International Health Fee | $485.00 | $0.00 |
| Session Total | $8245.90 | $0.00 |
| Year Total | $8245.90 |
| Description | Fall 2018 |
|---|---|
| International Program Tuition | $0.00 |
| Student Priority Fee | $0.00 |
| Recreation/Athletics Fee | $0.00 |
| Graduation/Alumni Services Fee | $0.00 |
| Administration Fee | $0.00 |
| Technology Enhancement Fee | $0.00 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $0.00 |
| CSI Association Fee | $0.00 |
| CSI - Advocacy Fee | $0.00 |
| CSI Health Plan Fee | $0.00 |
| ISR | $0.00 |
| International Health Fee | $0.00 |
| ONE Card Fee | $0.00 |
| CSI Legal Protection | $0.00 |
| CSI International Health Fee | $485.00 |
| Session Total | $485.00 |
| Year Total | $485.00 |
| Description | Winter 2019 | Spring 2019 |
|---|---|---|
| International Program Tuition | $6000.00 | $0.00 |
| Student Priority Fee | $50.65 | $0.00 |
| Graduation/Alumni Services Fee | $28.45 | $0.00 |
| Administration Fee | $25.90 | $0.00 |
| Technology Enhancement Fee | $142.75 | $0.00 |
| Program Services Fee | $543.50 | $0.00 |
| CSI Association Fee | $82.50 | $0.00 |
| CSI - Advocacy Fee | $5.75 | $0.00 |
| CSI Health Plan Fee | $206.50 | $0.00 |
| ISR | $375.00 | $0.00 |
| ONE Card Fee | $12.75 | $0.00 |
| CSI Legal Protection | $18.76 | $0.00 |
| CSI Capital Development Fee - Waterloo | $48.00 | $0.00 |
| CSI International Health Fee | $324.95 | $0.00 |
| Session Total | $7865.46 | $0.00 |
| Year Total | $7865.46 |
| Description | Spring 2019 |
|---|---|
| International Program Tuition | $6000.00 |
| Student Priority Fee | $50.65 |
| Graduation/Alumni Services Fee | $28.45 |
| Administration Fee | $25.90 |
| Technology Enhancement Fee | $142.75 |
| Program Services Fee | $543.50 |
| CSI Association Fee | $82.50 |
| CSI - Advocacy Fee | $5.75 |
| CSI Health Plan Fee | $115.05 |
| ISR | $375.00 |
| ONE Card Fee | $12.75 |
| CSI Legal Protection | $18.76 |
| CSI Capital Development Fee - Waterloo | $48.00 |
| CSI International Health Fee | $160.05 |
| Session Total | $7609.11 |
| Year Total | $7609.11 |
Financial Assistance
The Ontario Student Assistance Program (OSAP) is a needs-based program designed to help Ontario students cover the cost of post-secondary education. Funded by the federal and provincial governments, OSAP is intended to promote equality of opportunity for post-secondary studies through direct financial assistance for educational costs and living expenses. These interest-free loans are intended to supplement your financial resources and those of your family. The majority of students apply for loan assistance via the OSAP website. Students can also print the application booklet through the OSAP website.For more information, please visit Financial Services/Awards.
Graduate Opportunities
Graduates may find career opportunities in the following areas: security administrator/analyst; software security designer/developer; security auditor; security architect; security manager; software security; quality assurance specialist; and ethical hacker.For more details on related occupations, job market information and career opportunities, see the Government of Canada website: https://www.jobbank.gc.ca/home
Pathways & Credit Transfer
Conestoga pathways enable students to build on their academic achievements in order to earn a degree or additional credential. Pathways are formed through agreements between Conestoga programs or partner institutions.Often applicants have earned credits from another college or university that may allow a student to be granted advanced standing or exemption. Learn more about credit transfer opportunities at Conestoga.
Prior Learning Assessment and Recognition (PLAR)
Conestoga recognizes prior learning of skills, knowledge or competencies that have been acquired through employment, formal and informal education, non-formal learning or other life experiences. Prior learning must be measurable at the required academic level and meet Conestoga standards of achievement for current courses. Challenge exams and portfolio development are the primary methods of assessment. Other methods of assessment may be available depending upon the nature of the course objectives. Successful completion of the assessment results in an official course credit that will be recorded on the student's Conestoga transcript. PLAR cannot be used by registered Conestoga students for the clearance of academic deficiencies, to improve grades or to obtain admission into a program.Learn more about PLAR.
Program Courses
| Course Code | Course Title and Description |
|---|---|
| Level 1 | |
| INFO8560 | Web and Wireless Security
Description: Application security specialists need to understand how web and wireless connectivity can create vulnerabilities to both applications and data storage. Students will analyze the infrastructure of web and Wireless applications for possible threats. Students will be introduced to web and wireless administration through practical exercises, including installation and configuration of servers and controllers as well as the deployment of web applications. Students will study techniques for securing server clusters, including backup and recovery functions. Methods for detecting and preventing web and wireless based attacks are itemized and studied. |
| INFO8570 | Operating System Security Models
Description: Much of the security of software applications depends directly on the security of the operating systems on which they run. In this course, students study the architecture of popular operating systems, as well as the architecture of processing hardware, in order to understand their strengths and vulnerabilities. Such topics as processes, Threats, Memory, scheduling, System Calls, Input /Output and files are covered. In addition, students learn to install, configure, maintain and patch popular operating systems. The skills acquired in this course will aid students to develop secure software solutions and to protect business resources. |
| INFO8580 | Secure Network Administration
Description: Most business software is used in a network environment, meaning that application specialists and security analysts need to be able to use best industry practices in network administration in order to manage secure networks and provide secure delivery of applications. Through hands-on exercises, students study the management of user and group hierarchies, as well as the configuration of logical networks in order to design security solutions to protect business resources. |
| INFO8600 | Fundamentals of Cryptography
Description: In today's world, the proliferation of data is accelerating, and the secure transmission and storage of that data is essential. Many mainstream news stories revolve around the exposure of confidential information of organizations and individuals. Students will be introduced to the basic theory of encryption, including the principles, strengths and vulnerabilities of cryptography, and will apply that knowledge for two purposes: first, to assess encryption packages and the tools that use them, including email packages and messaging sites, for the purpose of transmission of sensitive data, and second, to use existing encryption library packages in order to incorporate encryption into software applications. |
| INFO8620 | Cyberlaw, Ethics and Privacy
Description: An important component of application and organizational security is the understanding of the rights and obligations of both the individual and the organization with respect to privacy and intellectual property. In this course students will explore ethics and law, including both Canadian law and the law of other jurisdictions, for the ways ethics and law inform the best practices of security professionals and organizations. Students will learn to assess the implications of new application development as well as the choice of supporting technologies, such as cloud computing, with respect to both vulnerabilities and liabilities of an organization. Students in this course will discuss topics such as Big Data, organized hacking, government surveillance, and industrial espionage. |
| PROG8270 | Software Application Security I
Description: Software applications are prone to vulnerabilities on many levels. In this course, students study vulnerabilities of web applications, including SQL injections, URL manipulations and backdoors. Students study current penetration testing techniques in order to assess, test and develop software applications with respect to security issues. |
| Level 2 | |
| INFO8590 | Network Components and Monitoring
Description: The security of applications is dependent on the design, topology and physical components of the networks on which they are served. This course consists of three major components: a study of the physical components (such as routers and switches) and topology of networks, TCP/IP protocol, and its implications for security, as well as network monitoring for performance and threats. These skills will aid graduates in developing security solutions for organizational security. |
| INFO8610 | Information Security Management
Description: Modern business organizations require the synthesis of many levels of security measures, including physical and network security, as well as the management of security practices. In this course, students explore management techniques as they are applied to corporate and organizational security. In addition to the basic techniques of IT management that include motivation, controlling and planning, students also study tools and skills for securing organizations, including risk and asset management, threat modeling, the development of security policies and procedures, auditing and employee training. |
| INFO8630 | Information Security Project
Description: In this capstone course, students will use skills acquired throughout the program in order to develop an applied project or prepare a research paper that will be based on the fields of software development, networking or management from a security perspective. The project will synthesize knowledge, apply knowledge in a new way, or bring new knowledge to its field. Students will have the opportunity to research a topic or develop a project for a business client, or they can pursue a topic of their own choice. |
| PROG8280 | Enterprise Application Security
Description: Because of the growth of eCommerce, many applications have grown in size and embraced the use of reusable, distributed components. This course focuses on the security of these enterprise applications, which are oriented toward high levels of user traffic as well as storage and transmission of large quantities of data. In order to learn how to secure these types of software applications, students study, with the aid of practical examples, how to develop and deploy enterprise systems, and how the security of such systems depend on the connectivity of their components. Included is an exploration of database security, web services, integration with legacy systems and Internet of Things. |
| PROG8290 | Software Application Security II
Description: Students build on the studies begun in Software Application Security I in order to test, evaluate and develop secure applications, but this time, in connection to exploits based on threats to Von Neumann architecture. Students will use industry-leading methodologies and tools to identify and assess common software insecurities and will apply secure design principles to implement appropriate mitigations. Students examine ways of promoting application security at a higher level by infusing security into the greater software development process. |
| PROG8300 | Malware and Hacking
Description: There are many types of malicious code and exploits that are enabled by the wider use of the internet, portable media, mobile devices and embedded systems. These exploits include trojan horses, worms, viruses, botnets and spyware, as well as less technologically sophisticated types of exploits such as password cracking and the guessing of security questions. In this course, students are encouraged to explore the behavior and motivation of hackers, to study known types of exploits, and to creatively try to design new kinds of attacks, all in order to develop the skills needed to secure organizations and software systems. |
| Course Code | Course Title and Description |
|---|---|
| Level 1 | |
| INFO8560 | Web and Wireless Security
Description: Application security specialists need to understand how web and wireless connectivity can create vulnerabilities to both applications and data storage. Students will analyze the infrastructure of web and Wireless applications for possible threats. Students will be introduced to web and wireless administration through practical exercises, including installation and configuration of servers and controllers as well as the deployment of web applications. Students will study techniques for securing server clusters, including backup and recovery functions. Methods for detecting and preventing web and wireless based attacks are itemized and studied. |
| INFO8570 | Operating System Security Models
Description: Much of the security of software applications depends directly on the security of the operating systems on which they run. In this course, students study the architecture of popular operating systems, as well as the architecture of processing hardware, in order to understand their strengths and vulnerabilities. Such topics as processes, Threats, Memory, scheduling, System Calls, Input /Output and files are covered. In addition, students learn to install, configure, maintain and patch popular operating systems. The skills acquired in this course will aid students to develop secure software solutions and to protect business resources. |
| INFO8580 | Secure Network Administration
Description: Most business software is used in a network environment, meaning that application specialists and security analysts need to be able to use best industry practices in network administration in order to manage secure networks and provide secure delivery of applications. Through hands-on exercises, students study the management of user and group hierarchies, as well as the configuration of logical networks in order to design security solutions to protect business resources. |
| INFO8600 | Fundamentals of Cryptography
Description: In today's world, the proliferation of data is accelerating, and the secure transmission and storage of that data is essential. Many mainstream news stories revolve around the exposure of confidential information of organizations and individuals. Students will be introduced to the basic theory of encryption, including the principles, strengths and vulnerabilities of cryptography, and will apply that knowledge for two purposes: first, to assess encryption packages and the tools that use them, including email packages and messaging sites, for the purpose of transmission of sensitive data, and second, to use existing encryption library packages in order to incorporate encryption into software applications. |
| INFO8620 | Cyberlaw, Ethics and Privacy
Description: An important component of application and organizational security is the understanding of the rights and obligations of both the individual and the organization with respect to privacy and intellectual property. In this course students will explore ethics and law, including both Canadian law and the law of other jurisdictions, for the ways ethics and law inform the best practices of security professionals and organizations. Students will learn to assess the implications of new application development as well as the choice of supporting technologies, such as cloud computing, with respect to both vulnerabilities and liabilities of an organization. Students in this course will discuss topics such as Big Data, organized hacking, government surveillance, and industrial espionage. |
| PROG8270 | Software Application Security I
Description: Software applications are prone to vulnerabilities on many levels. In this course, students study vulnerabilities of web applications, including SQL injections, URL manipulations and backdoors. Students study current penetration testing techniques in order to assess, test and develop software applications with respect to security issues. |
| Level 2 | |
| CEPR8200 | Co-op and Career Preparation
Description: This series of modules will prepare graduate certificate students for job searching for their co-op work terms and for their future careers. Students will familiarize themselves with the co-operative education policies and procedures and will learn the expectations, rules, and regulations that apply in the workplace regarding social, organizational, ethical, and safety issues while deepening their awareness of self-reflective practices. Students will critically reflect on their skills, attitudes, and expectations and evaluate available opportunities in the workplace. Successful completion of this course is a requirement for co-op eligibility. |
| INFO8590 | Network Components and Monitoring
Description: The security of applications is dependent on the design, topology and physical components of the networks on which they are served. This course consists of three major components: a study of the physical components (such as routers and switches) and topology of networks, TCP/IP protocol, and its implications for security, as well as network monitoring for performance and threats. These skills will aid graduates in developing security solutions for organizational security. |
| INFO8610 | Information Security Management
Description: Modern business organizations require the synthesis of many levels of security measures, including physical and network security, as well as the management of security practices. In this course, students explore management techniques as they are applied to corporate and organizational security. In addition to the basic techniques of IT management that include motivation, controlling and planning, students also study tools and skills for securing organizations, including risk and asset management, threat modeling, the development of security policies and procedures, auditing and employee training. |
| INFO8630 | Information Security Project
Description: In this capstone course, students will use skills acquired throughout the program in order to develop an applied project or prepare a research paper that will be based on the fields of software development, networking or management from a security perspective. The project will synthesize knowledge, apply knowledge in a new way, or bring new knowledge to its field. Students will have the opportunity to research a topic or develop a project for a business client, or they can pursue a topic of their own choice. |
| PROG8280 | Enterprise Application Security
Description: Because of the growth of eCommerce, many applications have grown in size and embraced the use of reusable, distributed components. This course focuses on the security of these enterprise applications, which are oriented toward high levels of user traffic as well as storage and transmission of large quantities of data. In order to learn how to secure these types of software applications, students study, with the aid of practical examples, how to develop and deploy enterprise systems, and how the security of such systems depend on the connectivity of their components. Included is an exploration of database security, web services, integration with legacy systems and Internet of Things. |
| PROG8290 | Software Application Security II
Description: Students build on the studies begun in Software Application Security I in order to test, evaluate and develop secure applications, but this time, in connection to exploits based on threats to Von Neumann architecture. Students will use industry-leading methodologies and tools to identify and assess common software insecurities and will apply secure design principles to implement appropriate mitigations. Students examine ways of promoting application security at a higher level by infusing security into the greater software development process. |
| PROG8300 | Malware and Hacking
Description: There are many types of malicious code and exploits that are enabled by the wider use of the internet, portable media, mobile devices and embedded systems. These exploits include trojan horses, worms, viruses, botnets and spyware, as well as less technologically sophisticated types of exploits such as password cracking and the guessing of security questions. In this course, students are encouraged to explore the behavior and motivation of hackers, to study known types of exploits, and to creatively try to design new kinds of attacks, all in order to develop the skills needed to secure organizations and software systems. |
| Level 3 | |
| COOP8110 | Co-op Work Term (Computer Application Security)
Description: This co-op work term will provide students with college-approved work experience in an authentic, professionally relevant work environment. Through this course, students will be provided the opportunity to connect theory and practice by leveraging their academic knowledge to develop specialized vocational skills. The practical applications of this work term will promote students' awareness of key concepts and terminology in their field, improve their competencies in problem-solving and decision-making, further their application of professional judgement, hone their leadership skills (independently or as part of team), and enhance their capacity to critically analyze and reflect on their demonstrated abilities in the workplace. |
Program Outcomes
- Remediate vulnerabilities in software applications based on security threats assessment and testing.
- Design and develop security solutions for business processes and applications in order to protect business resources.
- Develop plans to incorporate security into the software development process and integrate emerging technologies safely into new software products or computer systems
- Develop policies and procedures that protect the property and privacy of the clients, owners, employees and other stakeholders of an organization
- Evaluate the effectiveness of a security system through security audits to identify and correct security issues.
- Develop and deliver appropriate security training to ensure compliance with security policies.
- Communicate security, protocols, policies and audit results and related documentation to any level of the organization.
- Develop asset management and risk management plans to protect the physical, and intellectual properties of an organization.
Program Advisory Committees
The College appoints Program Advisory Committee members for diploma, degree, certificate and apprenticeship programs. Committees are composed of employers, practitioners and recent program graduates. College representatives (students, faculty, and administrators) are resource persons. Each committee advises the Board on the development of new programs, the monitoring of existing programs and community acceptance of programs.For a list of the current members, please visit our Program Advisory Committees.
Program Handbook
Apply Now
Domestic students should apply online at www.ontariocolleges.ca or by phone at 1-888-892-2228.ONTARIOCOLLEGES.CA
60 Corporate Court
Guelph, Ontario
Canada N1G 5J3
Detailed steps on the application process may help you to apply.
International students should apply online using the Conestoga College International Application Portal. Please note: not all programs are open to international students. Interested students should check the listing of open programs on our international students web page before applying.
International students should apply online using a Conestoga College International Application Form. Please note: not all programs are open to international students. Interested students should check the listing of open programs on our international students web page before applying.
Disclaimer
The College reserves the right to alter information including requirements and fees and to cancel at any time a program, course, or program major or option; to change the location and/or term in which a program or course is offered; to change the program curriculum as necessary to meet current competencies in the job market or for budgetary reasons; or to withdraw an offer of admission both prior to and after its acceptance by an applicant or student because of insufficient applications or registrations, over-acceptance of offers of admission, budgetary constraints, or for other such reasons. In the event the College exercises such a right, the College’s sole liability will be the return of monies paid by the applicant or student to the College.
Students actively registered in cohort delivered programs who take longer than the designed program length of time to complete their studies are accountable for completing any new or additional courses that may result due to changes in the program of study. Unless otherwise stated, students registered in non-cohort delivered programs must complete the program of study within seven years of being admitted to the program.
