CSC202 - Security Policies

Outline info
Last revision date 2018-07-20 11:56:10.302
Last review date 2018-07-20 11:56:21.303

Subject Title
Security Policies

Subject Description
Students study key structure elements and terms of written information protection policy and review typical policy contents. Students develop the related standards, procedures, and guidelines for implementing the policy. Students evaluate the tools needed to select, develop, and apply a security program that meets business goals.

Credit Status
One credit toward the Cyber Security Ontario College Graduate Certificate Program.

Learning Outcomes
Upon successful completion of this subject the student will be able to:

  1. Explain business drivers for information security policies and list guidelines and models for writing   effective policies
  2. Evaluate business risks and liabilities and explain their relationship to security policies
  3. Discuss the effects of Canadian and International laws and regulations within the context of Security Policy Implementation.
  4. List and explain the Seven Domains of IT infrastructure
  5. Identify and explain Information Security Policy Implementation Issues
  6. Design and implement an IT Security Policy Framework
  7. Design and implement Incident Response Team Policies.

Essential Employability Skills
Communicate clearly, concisely and correctly in the written, spoken and visual form that fulfils the purpose and meets the needs of the audience.

Respond to written, spoken, or visual messages in a manner that ensures effective communication.

Apply a systematic approach to solve problems.

Use a variety of thinking skills to anticipate and solve problems.

Locate, select, organize, and document information using appropriate technology and information systems.

Analyze, evaluate, and apply relevant information from a variety of sources.

Manage the use of time and other resources to complete projects.

Take responsibility for one's own actions, decisions, and consequences.

Cheating and Plagiarism
Each student should be aware of the College's policy regarding Cheating and Plagiarism. Seneca's Academic Policy will be strictly enforced.

To support academic honesty at Seneca College, all work submitted by students may be reviewed for authenticity and originality, utilizing software tools and third party services. Please visit the Academic Honesty site on for further information regarding cheating and plagiarism policies and procedures.

All students and employees have the right to study and work in an environment that is free from discrimination and/or harassment. Language or activities that defeat this objective violate the College Policy on Discrimination/Harassment and shall not be tolerated. Information and assistance are available from the Student Conduct Office at

Accommodation for Students with Disabilities
The College will provide reasonable accommodation to students with disabilities in order to promote academic success. If you require accommodation, contact the Counselling and Disabilities Services Office at ext. 22900 to initiate the process for documenting, assessing and implementing your individual accommodation needs.


Topic Outline

  • Information Technology Security Program Management
  • Business Drivers for Information Security
  • Canadian and International Laws, Industry Standards, and Compliance
  • The Seven Domains of IT Infrastructure
  • Information Security Program Implementation Issues
  • IT Security Frameworks
  • Designing, Implementing and Maintaining IT Security Policies
  • Security Policy Framework Approaches
  • User Domain Policies
  • Information Classification Policies and Risk Management
  • Incident Response Policies
  • IT Security Policies and Awareness Program Implementations
  • Enforcement and Compliance

Mode of Instruction
This course is delivered online. This course may involve the use of digital materials and/or a text, group discussions, interaction with your instructor and online activities.

Prescribed Texts

  Textbook 1 Textbook 2
Title Security Policies and Implementation Issues Laboratory Manual to accompany Security Policies and Implementation Issues
Author Robert Johnson Robert Johnson
Publisher Jones and Bartlett Learning Jones and Bartlett Learning
Edition 2nd 2nd
ISBN 9781284055993 9781449638375

Reference Material
Lab Manual To Accompany Secuity Policies And Implementation Issues
Robert Johnson
ISBN# 9781284059168

Promotion Policy

Grading Policy
A+ 90%  to  100%
A 80%  to  89%
B+ 75%  to  79%
B 70%  to  74%
C+ 65%  to  69%
C 60%  to  64%
D+ 55%  to  59%
D 50%  to  54%
F 0%    to  49% (Not a Pass)
EXC Excellent
SAT Satisfactory
UNSAT Unsatisfactory

For further information, see a copy of the Academic Policy, available online ( or at Seneca's Registrar's Offices.

Modes of Evaluation

Assignments (5 x 14%) 70%
Final Exam* 30%
TOTAL 100% 

Please retain this course outline document for future educational and/or employment use.

Approved by: Sharon Estok