This subject is available under ICMS undergraduate degrees, please click the button below to find an undergraduate course for you.
CYB303A
Specialisation
3 credit points
ICT103A Programming Principles
CYB201A Network Security, and
Course level pre-requisite: a total of 24 credit points (15 credit points, including ICT101A, ICT102A, ICT103A, DAT101A from level 100 and 9 credit points from level 200 core subjects) prior enrolling into level 300 core and specialisation subjects.
300
The growing use of digital technologies in organisations is prevalent to the point where, for virtually all business contexts, they are integral to the core functions of their operational landscape. From a cybersecurity perspective, this dependency makes organisations more susceptible to cyberattacks and cybercrime, which are becoming more pervasive.
For this reason, the need to develop investigative and forensic capabilities is on the rise, as they enable the cybersecurity industry to learn from the innovative methods cybercriminals develop and employ. These learnings are transformed into cyber intelligence, which is crucial to creating response strategies and measures to information security threats and cyberattacks.
This subject equips students with the underpinning concepts, theories, principles, and practices of digital forensics in cybersecurity. Students will learn how to systematically implement the phases and their inherent processes of digital forensics, applying a range of tools and techniques specific to a range of IT domains in contemporary settings.
This subject is practice-based and learning is predominantly acquired in laboratory sessions where students will develop their capabilities in exercising industry-standard digital forensic investigation methods. They will conduct digital investigations by procedurally executing forensics practices, demonstrating the ability to draw conclusions and report on digital evidence analysis. The legal, ethical, and professional aspects of digital forensics will also be examined.
a) Explain the role and applications of digital forensics in cybercrime investigations and organisational information security management systems.
b) Perform digital forensic examination for complex cybercrimes by executing its inherent lifecycle phases, processes, procedures, and methodologies.
c) Apply industry best practices, tools, and techniques to collect and analyse digital evidence during a forensic case, exhibiting professionalism and adhering to ethical code of conduct.
d) Critically evaluate the results of a digital forensics investigation, judiciously synthesise findings, and present evidentiary reports following professional standards.
e) Exercise decision-making and problem-solving to gather, audit, and interpret volatile and non-volatile digital evidence from various forensics artefacts.
f) Articulate ethical, professional, and legal considerations associated with digital forensics practices and their application.
Broad Topics to be Covered:
Topic: |
Week 1: Concepts of Forensics
|
Week 2: Forensics Lab and Data Acquisition Preparation
|
Week 3: Legal Frameworks and Cyberlaw
|
Week 4: Forensics Lifecycle, Phases, and Processes
|
Week 5: Using Digital Forensics Tools
|
Week 6: Operating System Forensics
|
Week 7: Main Memory Forensics
|
Week 8: Application and Internet Forensics
|
Week 9: Cloud Forensics
|
Week 10: Mobile Forensics
|
Week 11: Other Topics in Digital Forensics
|
Notifications