Computer Application Security (Optional Co-op)
- Credential:
- Ontario College Graduate Certificate
- College Code:
- CONS
- School:
- Engineering & Information Technology
- Program Code:
- 1476
- Accelerated Delivery:
- No
- Campus:
- DO
- Academic Year:
- 2017 / 2018
Notice:
Starting in Winter 2018, students in this program are required to bring a mobile device that meets minimum specified requirements.About the Program
Due to the increasing complexity of computer transactions and society's increasing dependence on eCommerce, as well as the proliferation of computing devices, the computer security field has become a high profile and rapidly growing, industry. Work in this field is constantly evolving and leads to a range of career options, from positions that require a high level of technological sophistication to higher-level management positions. This graduate certificate program will be attractive to graduates of software development programs, who will then learn the application security and networking skills needed to access entry level positions offered by a wide range of software development companies. Students will learn to secure software applications, including networked, web and mobile applications, against threats by malware and hackers. These skills will be augmented with management skills so that graduates will also be able to access careers as corporate security analysts and managers. In the Computer Application Security Graduate Certificate program, students benefit from specialized courses taught by highly qualified industry experts. As a result, students should expect to have classes scheduled up till 8:00 p.m.The optional co-op stream includes one co-op work term.
Program Information
Length: One-year Ontario College Graduate Certificate programDelivery Sequence:
Doon (Kitchener) - September/2017 - Fall | Winter
Doon (Kitchener) - January/2018 - Winter | Spring/Summer
Doon (Kitchener) - May/2018 - Spring/Summer | Fall
Delivery Sequence for Co-op Option:
Doon (Kitchener) - September/2017 - Fall | Winter | Spring/Summer
Doon (Kitchener) - January/2018 - Winter | Spring/Summer | Fall
Doon (Kitchener) - May/2018 - Spring/Summer | Fall | Winter
Location: Doon (Kitchener)
Start: September, January and May
First-Year Capacity: 30
Admission Requirements
- A diploma or degree in any of these areas:
- computer science
- software engineering
- software engineering technology
- computer programmer/analyst
- IT innovation and design
- computer or mobile applications development OR
- A graduate certificate in computer applications development or mobile solutions development. Other relevant disciplines that offer a significant degree of software development in their curriculum (such as health informatics) may also be considered.
Note re: Admission Requirements
- Applicants possessing degrees/diplomas from institutions where the language of instruction was not English will be required to provide test scores as evidence of their English language proficiency. Test scores, if required, would be a minimum of TOEFL iBT 88; IELTS 6.5 with no bands less than 6.0 or IELTS 6.0 with no band less than 5.5 and an overall average grade of B or above (as assessed, by country, to Ontario standards) in the academic program(s) specified in Admissions Requirements; CAEL 70 with no sub-test band scores less than 60; PTE Academic 58; Conestoga English Language Test (CELT) Band 6; or equivalent scores in other recognized standard tests of English.
- We offer a language program for students whose English language skills are below the standard required for admission but all other admission criteria have been met. You will be eligible for admission to the graduate certificate program after completion of level 4 of the General Arts and Science - English Language Studies (ELS) program with an overall grade average of 80% and no grade less than 75%. Your placement in the ELS program is determined by scores on an in-house English language test or TOEFL or IELTS.
Applying to the Co-op Stream
- All applicants apply to the non co-op program. Students will be informed of the application deadline and process. Labour market conditions determine co-op seats in optional co-op programs. Every student who meets academic eligibility requirements may not be admitted to the co-op stream.
- To be considered for admission to the co-op stream, students are required to achieve a minimum overall SWA of 3.75 (80%) in Level 1 with no dropped or failed courses.
- Academic Eligibility for a co-op work term is based on the term that occurs two terms prior to any work term. If this term is also a co-op work term, then work term eligibility will be based on the student's achievement during the preceding academic term. Should a student's academic performance decline considerably during the term just prior to any work term, the college reserves the right to withdraw the student from the upcoming work term.
Co-op Information
- Co-op programs add value to your education. Earn while you apply what you learn in a real workplace environment. See the Co-op webpages for more details.
- The College cannot guarantee co-op employment. All co-op students are required to conduct an independent co-op job search in addition to the supports and services provided by the Department of Co-op Education.
- Students are responsible for their own transportation and associated costs in order to complete work term requirements. Work locations may not always be readily accessible by public transportation.
Admission Procedures
- Final selection is made following an assessment of the admission requirements.
Program Requirements
- Students in this program are required to bring a mobile device that meets minimum specified requirements.
Tuition & Fees
Tuition fee details for the 2017-2018 year are listed below. Books and supplies are additional.
Non Co-op Program Fees
Domestic Fees
Estimated fees based upon the previous academic year (2016 / 2017) for Computer Application Security - Program # 1476
| Description | Fall 2017 | Winter 2018 |
|---|---|---|
| Student Priority Fee | $49.95 | $49.95 |
| Recreation/Athletics Fee | $69.55 | $69.55 |
| Graduation/Alumni Services Fee | $28.10 | $28.10 |
| Administration Fee | $25.55 | $25.55 |
| Technology Enhancement Fee | $140.80 | $140.80 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Capital Development Fee | $70.54 | $70.54 |
| CSI Association Fee | $110.00 | $110.00 |
| CSI - CSA | $4.56 | $4.56 |
| Program Tuition Fee (ACR) | $2595.00 | $2595.00 |
| CSI Health Plan Fee | $286.00 | $0.00 |
| ONE Card Fee | $12.60 | $12.60 |
| Session Total | $3392.65 | $3106.65 |
| Year Total | $6499.30 |
| Description | Winter 2018 | Spring 2018 |
|---|---|---|
| Student Priority Fee | $49.95 | $49.95 |
| Recreation/Athletics Fee | $69.55 | $69.55 |
| Graduation/Alumni Services Fee | $28.10 | $28.10 |
| Administration Fee | $25.55 | $25.55 |
| Technology Enhancement Fee | $140.80 | $140.80 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Capital Development Fee | $70.54 | $70.54 |
| CSI Association Fee | $110.00 | $110.00 |
| CSI - CSA | $4.56 | $4.56 |
| Program Tuition Fee (ACR) | $2595.00 | $2595.00 |
| CSI Health Plan Fee | $191.62 | $0.00 |
| ONE Card Fee | $12.60 | $12.60 |
| Session Total | $3298.27 | $3106.65 |
| Year Total | $6404.92 |
| Description | Spring 2018 |
|---|---|
| Student Priority Fee | $49.95 |
| Recreation/Athletics Fee | $69.55 |
| Graduation/Alumni Services Fee | $28.10 |
| Administration Fee | $25.55 |
| Technology Enhancement Fee | $140.80 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $70.54 |
| CSI Association Fee | $110.00 |
| CSI - CSA | $4.56 |
| Program Tuition Fee (ACR) | $2595.00 |
| CSI Health Plan Fee | $97.24 |
| ONE Card Fee | $12.60 |
| Session Total | $3203.89 |
| Year Total | $3203.89 |
| Description | Spring 2017 | Fall 2017 |
|---|---|---|
| Student Priority Fee | $49.45 | $49.95 |
| Recreation/Athletics Fee | $68.80 | $69.55 |
| Graduation/Alumni Services Fee | $27.80 | $28.10 |
| Administration Fee | $25.30 | $25.55 |
| Technology Enhancement Fee | $133.35 | $140.80 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Capital Development Fee | $68.49 | $70.54 |
| CSI Association Fee | $110.00 | $110.00 |
| CSI - CSA | $4.56 | $4.56 |
| Program Tuition Fee (ACR) | $2520.00 | $2595.00 |
| CSI Health Plan Fee | $97.24 | $286.00 |
| ONE Card Fee | $12.50 | $12.60 |
| Session Total | $3117.49 | $3392.65 |
| Year Total | $3117.49 | $3392.65 |
| Description | Spring 2017 |
|---|---|
| Student Priority Fee | $49.45 |
| Recreation/Athletics Fee | $68.80 |
| Graduation/Alumni Services Fee | $27.80 |
| Administration Fee | $25.30 |
| Technology Enhancement Fee | $133.35 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $68.49 |
| CSI Association Fee | $110.00 |
| CSI - CSA | $4.56 |
| Program Tuition Fee (ACR) | $2520.00 |
| CSI Health Plan Fee | $0.00 |
| ONE Card Fee | $12.50 |
| Session Total | $3020.25 |
| Year Total | $6232.12 |
International Fees
Estimated International fees based upon the previous academic year (2016 / 2017) for
Computer Application Security - Program # 1476
| Description | Fall 2017 | Winter 2018 |
|---|---|---|
| International Program Tuition | $5950.00 | $5950.00 |
| Student Priority Fee | $49.95 | $49.95 |
| Recreation/Athletics Fee | $69.55 | $69.55 |
| Graduation/Alumni Services Fee | $28.10 | $28.10 |
| Administration Fee | $25.55 | $25.55 |
| Technology Enhancement Fee | $140.80 | $140.80 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Capital Development Fee | $70.54 | $70.54 |
| CSI Association Fee | $110.00 | $110.00 |
| CSI - CSA | $4.56 | $4.56 |
| ISR | $375.00 | $375.00 |
| International Health Fee | $485.00 | $0.00 |
| ONE Card Fee | $12.60 | $12.60 |
| Session Total | $7321.65 | $6836.65 |
| Year Total | $14158.30 |
| Description | Winter 2018 | Spring 2018 |
|---|---|---|
| International Program Tuition | $5950.00 | $5950.00 |
| Student Priority Fee | $49.95 | $49.95 |
| Recreation/Athletics Fee | $69.55 | $69.55 |
| Graduation/Alumni Services Fee | $28.10 | $28.10 |
| Administration Fee | $25.55 | $25.55 |
| Technology Enhancement Fee | $140.80 | $140.80 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Capital Development Fee | $70.54 | $70.54 |
| CSI Association Fee | $110.00 | $110.00 |
| CSI - CSA | $4.56 | $4.56 |
| ISR | $375.00 | $375.00 |
| International Health Fee | $324.95 | $0.00 |
| ONE Card Fee | $12.60 | $12.60 |
| Session Total | $7161.60 | $6836.65 |
| Year Total | $13998.25 |
| Description | Spring 2018 |
|---|---|
| International Program Tuition | $5950.00 |
| Student Priority Fee | $49.95 |
| Recreation/Athletics Fee | $69.55 |
| Graduation/Alumni Services Fee | $28.10 |
| Administration Fee | $25.55 |
| Technology Enhancement Fee | $140.80 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $70.54 |
| CSI Association Fee | $110.00 |
| CSI - CSA | $4.56 |
| ISR | $375.00 |
| International Health Fee | $160.05 |
| ONE Card Fee | $12.60 |
| Session Total | $6996.70 |
| Year Total | $6996.70 |
| Description | Spring 2017 | Fall 2017 |
|---|---|---|
| International Program Tuition | $5850.00 | $5950.00 |
| Student Priority Fee | $49.45 | $49.95 |
| Recreation/Athletics Fee | $68.80 | $69.55 |
| Graduation/Alumni Services Fee | $27.80 | $28.10 |
| Administration Fee | $25.30 | $25.55 |
| Technology Enhancement Fee | $133.35 | $140.80 |
| Program Services Fee | $0.00 | $0.00 |
| CSI Capital Development Fee | $68.49 | $70.54 |
| CSI Association Fee | $110.00 | $110.00 |
| CSI - CSA | $4.56 | $4.56 |
| ISR | $375.00 | $375.00 |
| International Health Fee | $203.50 | $485.00 |
| ONE Card Fee | $12.50 | $12.60 |
| Session Total | $6928.75 | $7321.65 |
| Year Total | $6928.75 | $7321.65 |
| Description | Spring 2017 |
|---|---|
| International Program Tuition | $5850.00 |
| Student Priority Fee | $49.45 |
| Recreation/Athletics Fee | $68.80 |
| Graduation/Alumni Services Fee | $27.80 |
| Administration Fee | $25.30 |
| Technology Enhancement Fee | $133.35 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $68.49 |
| CSI Association Fee | $110.00 |
| CSI - CSA | $4.56 |
| ISR | $375.00 |
| International Health Fee | $0.00 |
| ONE Card Fee | $12.50 |
| Session Total | $6725.25 |
| Year Total | $13852.00 |
Co-op Program Fees
Optional Co-op Domestic Fees
Estimated fees based upon the previous academic year (2016 / 2017) for Computer Application Security (Optional Co-op) - Program # 1476C
| Description | Fall 2017 | Winter 2018 | Spring 2018 |
|---|---|---|---|
| Student Priority Fee | $49.95 | $49.95 | $0.00 |
| Recreation/Athletics Fee | $69.55 | $69.55 | $0.00 |
| Graduation/Alumni Services Fee | $28.10 | $28.10 | $0.00 |
| Administration Fee | $25.55 | $25.55 | $0.00 |
| Technology Enhancement Fee | $140.80 | $140.80 | $0.00 |
| Program Services Fee | $0.00 | $536.00 | $0.00 |
| CSI Capital Development Fee | $70.54 | $70.54 | $0.00 |
| CSI Association Fee | $110.00 | $110.00 | $0.00 |
| CSI - CSA | $4.56 | $4.56 | $0.00 |
| Program Tuition Fee (ACR) | $2595.00 | $2595.00 | $0.00 |
| CSI Health Plan Fee | $286.00 | $0.00 | $0.00 |
| ONE Card Fee | $12.60 | $12.60 | $0.00 |
| Session Total | $3392.65 | $3642.65 | $0.00 |
| Year Total | $7035.30 |
| Description | Spring 2017 | Fall 2017 | Winter 2018 |
|---|---|---|---|
| Student Priority Fee | $49.45 | $49.95 | $0.00 |
| Recreation/Athletics Fee | $68.80 | $69.55 | $0.00 |
| Graduation/Alumni Services Fee | $27.80 | $28.10 | $0.00 |
| Administration Fee | $25.30 | $25.55 | $0.00 |
| Technology Enhancement Fee | $133.35 | $140.80 | $0.00 |
| Program Services Fee | $0.00 | $536.00 | $0.00 |
| CSI Capital Development Fee | $68.49 | $70.54 | $0.00 |
| CSI Association Fee | $110.00 | $110.00 | $0.00 |
| CSI - CSA | $4.56 | $4.56 | $0.00 |
| Program Tuition Fee (ACR) | $2520.00 | $2595.00 | $0.00 |
| CSI Health Plan Fee | $97.24 | $286.00 | $0.00 |
| ONE Card Fee | $12.50 | $12.60 | $0.00 |
| Session Total | $3117.49 | $3928.65 | $0.00 |
| Year Total | $3117.49 | $3928.65 |
| Description | Spring 2017 | Fall 2017 |
|---|---|---|
| Student Priority Fee | $49.45 | $0.00 |
| Recreation/Athletics Fee | $68.80 | $0.00 |
| Graduation/Alumni Services Fee | $27.80 | $0.00 |
| Administration Fee | $25.30 | $0.00 |
| Technology Enhancement Fee | $133.35 | $0.00 |
| Program Services Fee | $530.20 | $0.00 |
| CSI Capital Development Fee | $68.49 | $0.00 |
| CSI Association Fee | $110.00 | $0.00 |
| CSI - CSA | $4.56 | $0.00 |
| Program Tuition Fee (ACR) | $2520.00 | $0.00 |
| CSI Health Plan Fee | $0.00 | $0.00 |
| ONE Card Fee | $12.50 | $0.00 |
| Session Total | $3550.45 | $0.00 |
| Year Total | $6762.32 |
| Description | Spring 2017 |
|---|---|
| Student Priority Fee | $0.00 |
| Recreation/Athletics Fee | $0.00 |
| Graduation/Alumni Services Fee | $0.00 |
| Administration Fee | $0.00 |
| Technology Enhancement Fee | $0.00 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $0.00 |
| CSI Association Fee | $0.00 |
| CSI - CSA | $0.00 |
| Program Tuition Fee (ACR) | $0.00 |
| CSI Health Plan Fee | $0.00 |
| ONE Card Fee | $0.00 |
| Session Total | $0.00 |
| Year Total | $6856.70 |
Optional Co-op International Fees
Estimated International fees based upon the previous academic year (2016 / 2017) for
Computer Application Security (Optional Co-op) - Program # 1476C
| Description | Fall 2017 | Winter 2018 | Spring 2018 |
|---|---|---|---|
| International Program Tuition | $5950.00 | $5950.00 | $0.00 |
| Student Priority Fee | $49.95 | $49.95 | $0.00 |
| Recreation/Athletics Fee | $69.55 | $69.55 | $0.00 |
| Graduation/Alumni Services Fee | $28.10 | $28.10 | $0.00 |
| Administration Fee | $25.55 | $25.55 | $0.00 |
| Technology Enhancement Fee | $140.80 | $140.80 | $0.00 |
| Program Services Fee | $0.00 | $536.00 | $0.00 |
| CSI Capital Development Fee | $70.54 | $70.54 | $0.00 |
| CSI Association Fee | $110.00 | $110.00 | $0.00 |
| CSI - CSA | $4.56 | $4.56 | $0.00 |
| ISR | $375.00 | $375.00 | $0.00 |
| International Health Fee | $485.00 | $0.00 | $0.00 |
| ONE Card Fee | $12.60 | $12.60 | $0.00 |
| Session Total | $7321.65 | $7372.65 | $0.00 |
| Year Total | $14694.30 |
| Description | Spring 2017 | Fall 2017 | Winter 2018 |
|---|---|---|---|
| International Program Tuition | $5850.00 | $5950.00 | $0.00 |
| Student Priority Fee | $49.45 | $49.95 | $0.00 |
| Recreation/Athletics Fee | $68.80 | $69.55 | $0.00 |
| Graduation/Alumni Services Fee | $27.80 | $28.10 | $0.00 |
| Administration Fee | $25.30 | $25.55 | $0.00 |
| Technology Enhancement Fee | $133.35 | $140.80 | $0.00 |
| Program Services Fee | $0.00 | $536.00 | $0.00 |
| CSI Capital Development Fee | $68.49 | $70.54 | $0.00 |
| CSI Association Fee | $110.00 | $110.00 | $0.00 |
| CSI - CSA | $4.56 | $4.56 | $0.00 |
| ISR | $375.00 | $375.00 | $0.00 |
| International Health Fee | $203.50 | $485.00 | $0.00 |
| ONE Card Fee | $12.50 | $12.60 | $0.00 |
| Session Total | $6928.75 | $7857.65 | $0.00 |
| Year Total | $6928.75 | $7857.65 |
| Description | Spring 2017 | Fall 2017 |
|---|---|---|
| International Program Tuition | $5850.00 | $0.00 |
| Student Priority Fee | $49.45 | $0.00 |
| Recreation/Athletics Fee | $68.80 | $0.00 |
| Graduation/Alumni Services Fee | $27.80 | $0.00 |
| Administration Fee | $25.30 | $0.00 |
| Technology Enhancement Fee | $133.35 | $0.00 |
| Program Services Fee | $530.20 | $0.00 |
| CSI Capital Development Fee | $68.49 | $0.00 |
| CSI Association Fee | $110.00 | $0.00 |
| CSI - CSA | $4.56 | $0.00 |
| ISR | $375.00 | $0.00 |
| International Health Fee | $0.00 | $485.00 |
| ONE Card Fee | $12.50 | $0.00 |
| Session Total | $7255.45 | $485.00 |
| Year Total | $14382.20 | $485.00 |
| Description | Spring 2017 |
|---|---|
| International Program Tuition | $0.00 |
| Student Priority Fee | $0.00 |
| Recreation/Athletics Fee | $0.00 |
| Graduation/Alumni Services Fee | $0.00 |
| Administration Fee | $0.00 |
| Technology Enhancement Fee | $0.00 |
| Program Services Fee | $0.00 |
| CSI Capital Development Fee | $0.00 |
| CSI Association Fee | $0.00 |
| CSI - CSA | $0.00 |
| ISR | $0.00 |
| International Health Fee | $0.00 |
| ONE Card Fee | $0.00 |
| Session Total | $0.00 |
| Year Total | $14530.70 |
Financial Assistance
The Ontario Student Assistance Program (OSAP) is a needs-based program designed to help Ontario students cover the cost of post-secondary education. Funded by the federal and provincial governments, OSAP is intended to promote equality of opportunity for post-secondary studies through direct financial assistance for educational costs and living expenses. These interest-free loans are intended to supplement your financial resources and those of your family. The majority of students apply for loan assistance via the OSAP website. Students can also print the application booklet through the OSAP website.For more information, please visit Financial Services/Awards.
Graduate Opportunities
Graduates may find career opportunities in the following areas: security administrator/analyst; software security designer/developer; security auditor; security architect; security manager; software security; quality assurance specialist; and ethical hacker.For more details on related occupations, job market information and career opportunities, see the Government of Canada website: http://www.workingincanada.gc.ca
Pathways & Credit Transfer
Conestoga pathways enable students to build on their academic achievements in order to earn a degree or additional credential. Pathways are formed through agreements between Conestoga programs or partner institutions.Often applicants have earned credits from another college or university that may allow a student to be granted advanced standing or exemption. Learn more about credit transfer opportunities at Conestoga.
Prior Learning Assessment and Recognition (PLAR)
Conestoga recognizes prior learning of skills, knowledge or competencies that have been acquired through employment, formal and informal education, non-formal learning or other life experiences. Prior learning must be measurable at the required academic level and meet Conestoga standards of achievement for current courses. Challenge exams and portfolio development are the primary methods of assessment. Other methods of assessment may be available depending upon the nature of the course objectives. Successful completion of the assessment results in an official course credit that will be recorded on the student's Conestoga transcript. PLAR cannot be used by registered Conestoga students for the clearance of academic deficiencies, to improve grades or to obtain admission into a program.Learn more about PLAR.
Program Courses
| Course Code | Course Title and Description |
|---|---|
| Level 1 | |
| INFO8560 | Web and Wireless Security
Description: Application security specialists need to understand how web connectivity can create vulnerabilities to both applications and data storage. Students will analyze the infrastructure of web applications for possible threats. Students will be introduced to web administration through practical exercises, including installation and configuration of servers as well as the deployment of web applications. Students will study techniques for securing server clusters, including backup and recovery functions. Cloud storage and its benefits and vulnerabilities are examined. Methods for detecting and preventing web based attacks are itemized and studied. |
| INFO8570 | Operating System Security Models
Description: Much of the security of software applications depends directly on the security of the operating systems on which they run. In this course, students study the architecture of popular operating systems, as well as the architecture of processing hardware, in order to understand their strengths and vulnerabilities. Such topics as rings, kernels, file layout and system calls are covered. In addition, students learn to install, configure, maintain and patch popular operating systems. The skills acquired in this course will aid students to develop secure software solutions and to protect business resources. |
| INFO8580 | Secure Network Administration
Description: Most business software is used in a network environment, meaning that application specialists and security analysts need to be able to use best industry practices in network administration in order to manage secure networks and provide secure delivery of applications. Through hands-on exercises, students study the management of user and group hierarchies, as well as the configuration of logical networks in order to design security solutions to protect business resources. |
| INFO8590 | Network Components and Monitoring
Description: The security of applications is dependent on the design, topology and physical components of the networks on which they are served. This course consists of three major components: a study of the physical components (such as routers and switches) and topology of networks, TCP/IP protocol, and its implications for security, as well as network monitoring for performance and threats. These skills will aid graduates in developing security solutions for organizational security. |
| INFO8600 | Fundamentals of Cryptography
Description: In today's world, the proliferation of data is accelerating, and the secure transmission and storage of that data is essential. Many mainstream news stories revolve around the exposure of confidential information of organizations and individuals. Students will be introduced to the basic theory of encryption, including the principles, strengths and vulnerabilities of cryptography, and will apply that knowledge for two purposes: first, to assess encryption packages and the tools that use them, including email packages and messaging sites, for the purpose of transmission of sensitive data, and second, to use existing encryption library packages in order to incorporate encryption into software applications. |
| PROG8270 | Software Application Security I
Description: Software applications are prone to vulnerabilities on many levels. In this course, students study vulnerabilities of web applications, including SQL injections, URL manipulations and backdoors. Students study current penetration testing techniques in order to assess, test and develop software applications with respect to security issues. |
| Level 2 | |
| INFO8610 | Information Security Management
Description: Modern business organizations require the synthesis of many levels of security measures, including physical and network security, as well as the management of security practices. In this course, students explore management techniques as they are applied to corporate and organizational security. In addition to the basic techniques of IT management that include motivation, controlling and planning, students also study tools and skills for securing organizations, including risk and asset management, threat modeling, the development of security policies and procedures, auditing and employee training. |
| INFO8620 | Cyberlaw, Ethics and Privacy
Description: An important component of application and organizational security is the understanding of the rights and obligations of both the individual and the organization with respect to privacy and intellectual property. In this course students will explore ethics and law, including both Canadian law and the law of other jurisdictions, for the ways ethics and law inform the best practices of security professionals and organizations. Students will learn to assess the implications of new application development as well as the choice of supporting technologies, such as cloud computing, with respect to both vulnerabilities and liabilities of an organization. Students in this course will discuss topics such as Big Data, organized hacking, government surveillance, and industrial espionage. |
| INFO8630 | Information Security Project
Description: In this capstone course, students will use skills acquired throughout the program in order to develop an applied project or prepare a research paper that will be based on the fields of software development, networking or management from a security perspective. The project will synthesize knowledge, apply knowledge in a new way, or bring new knowledge to its field. Students will have the opportunity to research a topic or develop a project for a business client, or they can pursue a topic of their own choice. |
| PROG8280 | Enterprise Application Security
Description: Because of the growth of eCommerce, many applications have grown in size and embraced the use of reusable, distributed components. This course focuses on the security of these enterprise applications, which are oriented toward high levels of user traffic as well as storage and transmission of large quantities of data. In order to learn how to secure these types of software applications, students study, with the aid of practical examples, how to develop and deploy enterprise systems, and how the security of such systems depend on the connectivity of their components. Included is an exploration of database security, web services, integration with legacy systems and Internet of Things. |
| PROG8290 | Software Application Security II
Description: Students build on the studies begun in Software Application Security I in order to test, evaluate and develop secure applications, but this time in connection to exploits based on threats to Von Neumann architecture. Students study application memory models, memory leaks and system calls. These discussions are extended to mobile application security. Students examine ways of promoting application security at a higher level by infusing security into the greater software development process. |
| PROG8300 | Malware and Hacking
Description: There are many types of malicious code and exploits that are enabled by the wider use of the internet, portable media, mobile devices and embedded systems. These exploits include trojan horses, worms, viruses, botnets and spyware, as well as less technologically sophisticated types of exploits such as password cracking and the guessing of security questions. In this course, students are encouraged to explore the behavior and motivation of hackers, to study known types of exploits, and to creatively try to design new kinds of attacks, all in order to develop the skills needed to secure organizations and software systems. |
| Course Code | Course Title and Description |
|---|---|
| Level 1 | |
| INFO8560 | Web and Wireless Security
Description: Application security specialists need to understand how web connectivity can create vulnerabilities to both applications and data storage. Students will analyze the infrastructure of web applications for possible threats. Students will be introduced to web administration through practical exercises, including installation and configuration of servers as well as the deployment of web applications. Students will study techniques for securing server clusters, including backup and recovery functions. Cloud storage and its benefits and vulnerabilities are examined. Methods for detecting and preventing web based attacks are itemized and studied. |
| INFO8570 | Operating System Security Models
Description: Much of the security of software applications depends directly on the security of the operating systems on which they run. In this course, students study the architecture of popular operating systems, as well as the architecture of processing hardware, in order to understand their strengths and vulnerabilities. Such topics as rings, kernels, file layout and system calls are covered. In addition, students learn to install, configure, maintain and patch popular operating systems. The skills acquired in this course will aid students to develop secure software solutions and to protect business resources. |
| INFO8580 | Secure Network Administration
Description: Most business software is used in a network environment, meaning that application specialists and security analysts need to be able to use best industry practices in network administration in order to manage secure networks and provide secure delivery of applications. Through hands-on exercises, students study the management of user and group hierarchies, as well as the configuration of logical networks in order to design security solutions to protect business resources. |
| INFO8590 | Network Components and Monitoring
Description: The security of applications is dependent on the design, topology and physical components of the networks on which they are served. This course consists of three major components: a study of the physical components (such as routers and switches) and topology of networks, TCP/IP protocol, and its implications for security, as well as network monitoring for performance and threats. These skills will aid graduates in developing security solutions for organizational security. |
| INFO8600 | Fundamentals of Cryptography
Description: In today's world, the proliferation of data is accelerating, and the secure transmission and storage of that data is essential. Many mainstream news stories revolve around the exposure of confidential information of organizations and individuals. Students will be introduced to the basic theory of encryption, including the principles, strengths and vulnerabilities of cryptography, and will apply that knowledge for two purposes: first, to assess encryption packages and the tools that use them, including email packages and messaging sites, for the purpose of transmission of sensitive data, and second, to use existing encryption library packages in order to incorporate encryption into software applications. |
| PROG8270 | Software Application Security I
Description: Software applications are prone to vulnerabilities on many levels. In this course, students study vulnerabilities of web applications, including SQL injections, URL manipulations and backdoors. Students study current penetration testing techniques in order to assess, test and develop software applications with respect to security issues. |
| Level 2 | |
| CDEV1020 | Co-op and Career Preparation
Description: This mandatory course prepares students for job searching for their co-op work terms and for post-graduate careers. Students will reflect on their skills, attitudes, and expectations and evaluate and interpret available opportunities in the workplace. Self-marketing techniques using resumes, cover letters, cold-calls, and interviewing will be learned and students will learn the expectations, rules, and regulations that apply in the workplace with regards to social, organizational, ethical, and safety issues while developing an awareness of self-reflective practice. |
| INFO8610 | Information Security Management
Description: Modern business organizations require the synthesis of many levels of security measures, including physical and network security, as well as the management of security practices. In this course, students explore management techniques as they are applied to corporate and organizational security. In addition to the basic techniques of IT management that include motivation, controlling and planning, students also study tools and skills for securing organizations, including risk and asset management, threat modeling, the development of security policies and procedures, auditing and employee training. |
| INFO8620 | Cyberlaw, Ethics and Privacy
Description: An important component of application and organizational security is the understanding of the rights and obligations of both the individual and the organization with respect to privacy and intellectual property. In this course students will explore ethics and law, including both Canadian law and the law of other jurisdictions, for the ways ethics and law inform the best practices of security professionals and organizations. Students will learn to assess the implications of new application development as well as the choice of supporting technologies, such as cloud computing, with respect to both vulnerabilities and liabilities of an organization. Students in this course will discuss topics such as Big Data, organized hacking, government surveillance, and industrial espionage. |
| INFO8630 | Information Security Project
Description: In this capstone course, students will use skills acquired throughout the program in order to develop an applied project or prepare a research paper that will be based on the fields of software development, networking or management from a security perspective. The project will synthesize knowledge, apply knowledge in a new way, or bring new knowledge to its field. Students will have the opportunity to research a topic or develop a project for a business client, or they can pursue a topic of their own choice. |
| PROG8280 | Enterprise Application Security
Description: Because of the growth of eCommerce, many applications have grown in size and embraced the use of reusable, distributed components. This course focuses on the security of these enterprise applications, which are oriented toward high levels of user traffic as well as storage and transmission of large quantities of data. In order to learn how to secure these types of software applications, students study, with the aid of practical examples, how to develop and deploy enterprise systems, and how the security of such systems depend on the connectivity of their components. Included is an exploration of database security, web services, integration with legacy systems and Internet of Things. |
| PROG8290 | Software Application Security II
Description: Students build on the studies begun in Software Application Security I in order to test, evaluate and develop secure applications, but this time in connection to exploits based on threats to Von Neumann architecture. Students study application memory models, memory leaks and system calls. These discussions are extended to mobile application security. Students examine ways of promoting application security at a higher level by infusing security into the greater software development process. |
| PROG8300 | Malware and Hacking
Description: There are many types of malicious code and exploits that are enabled by the wider use of the internet, portable media, mobile devices and embedded systems. These exploits include trojan horses, worms, viruses, botnets and spyware, as well as less technologically sophisticated types of exploits such as password cracking and the guessing of security questions. In this course, students are encouraged to explore the behavior and motivation of hackers, to study known types of exploits, and to creatively try to design new kinds of attacks, all in order to develop the skills needed to secure organizations and software systems. |
| Level 3 | |
| COOP8110 | Co-op Work Term (Computer Application Security)
Description: This course will provide students with college-approved work experience in an information technology environment. This course will increase the student's understanding of employer expectations with regards to attitudinal, practical, and academic skills. These skill areas will be improved during the work term while the student responsibly performs the duties as laid out in the job description, in accordance with course and program outcomes. Student development will be evaluated during and at the conclusion of the work experience. |
Program Outcomes
- Remediate vulnerabilities in software applications based on security threats assessment and testing.
- Design and develop security solutions for business processes and applications in order to protect business resources.
- Develop plans to incorporate security into the software development process and integrate emerging technologies safely into new software products or computer systems
- Develop policies and procedures that protect the property and privacy of the clients, owners, employees and other stakeholders of an organization
- Evaluate the effectiveness of a security system through security audits to identify and correct security issues.
- Develop and deliver appropriate security training to ensure compliance with security policies.
- Communicate security, protocols, policies and audit results and related documentation to any level of the organization.
- Develop asset management and risk management plans to protect the physical, and intellectual properties of an organization.
Program Advisory Committees
The College appoints Program Advisory Committee members for diploma, degree, certificate and apprenticeship programs. Committees are composed of employers, practitioners and recent program graduates. College representatives (students, faculty, and administrators) are resource persons. Each committee advises the Board on the development of new programs, the monitoring of existing programs and community acceptance of programs.For a list of the current members, please visit our Program Advisory Committees.
Program Handbook
Apply Now
Domestic students should apply online at www.ontariocolleges.ca or by phone at 1-888-892-2228.ONTARIOCOLLEGES.CA
60 Corporate Court
Guelph, Ontario
Canada N1G 5J3
Detailed steps on the application process may help you to apply.
International students should apply online using a Conestoga College International Application Form. Please note: not all programs are open to international students. Interested students should check the listing of open programs on our international students web page before applying.
International students should apply online using a Conestoga College International Application Form. Please note: not all programs are open to international students. Interested students should check the listing of open programs on our international students web page before applying.
Disclaimer
The College reserves the right to alter information including requirements and fees and to cancel at any time a program, course, or program major or option; to change the location and/or term in which a program or course is offered; to change the program curriculum as necessary to meet current competencies in the job market or for budgetary reasons; or to withdraw an offer of admission both prior to and after its acceptance by an applicant or student because of insufficient applications or registrations, over-acceptance of offers of admission, budgetary constraints, or for other such reasons. In the event the College exercises such a right, the College’s sole liability will be the return of monies paid by the applicant or student to the College.
Students actively registered in cohort delivered programs who take longer than the designed program length of time to complete their studies are accountable for completing any new or additional courses that may result due to changes in the program of study. Unless otherwise stated, students registered in non-cohort delivered programs must complete the program of study within seven years of being admitted to the program.
