Outline

Overview

Cloud security is an integral part of any cybersecurity portfolio. Increasingly data and services are moved to the cloud by all types of organizations, such as enterprises and governments. Such data and services become lucrative targets for attackers and in the last few years we have witnessed cloud security breaches in scales we have never witnessed before. This unit provides theoretical, design, and practical skills that are required to design, deploy, and maintain highly secure cloud infrastructure.

Unit details and rules

Unit code	CSEC5615
Academic unit	Computer Science
Credit points	6
Prohibitions ?	OCSE5615
Prerequisites ?	None
Corequisites ?	None
Assumed knowledge ?	CSEC5616 or OCSE5616 or ELEC5616 or INFO3616 or INFO2222
Available to study abroad and exchange students	No

Teaching staff

Coordinator	Ahmad Azab, ahmad.azab@sydney.edu.au
Lecturer(s)	Ahmad Azab, ahmad.azab@sydney.edu.au
Tutor(s)	Nhi Nguyen, luu.nguyen@sydney.edu.au

Type	Description	Weight	Due	Length
Supervised exam ?	Final Exam MCQ and open answers	40%	Formal exam period	2 hours
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 1 Azure application	1%	Week 01 Due date: 25 Feb 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 2 Azure application	2%	Week 02 Due date: 03 Mar 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 3 Azure application	2%	Week 03 Due date: 10 Mar 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 4 Azure application	2%	Week 04 Due date: 17 Mar 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 5 Azure application	1%	Week 05 Due date: 24 Mar 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 6 Azure application	2%	Week 06 Due date: 07 Apr 2024 at 23:59	N/A
Outcomes assessed:
Tutorial quiz	Quiz - 1 MCQ quiz during the tutorial	5%	Week 06	15 minutes quiz
Outcomes assessed:
Assignment	Assignment 1- Cloud Security Consultancy Report 1 A report to be submitted	15%	Week 07 Due date: 14 Apr 2024 at 23:59	30 pages
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 7 Azure application	2%	Week 07 Due date: 14 Apr 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 8 Azure application	2%	Week 08 Due date: 21 Apr 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 10 Azure application	2%	Week 10 Due date: 05 May 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 11 Azure application	2%	Week 11 Due date: 12 May 2024 at 23:59	N/A
Outcomes assessed:
Small continuous assessment	Tutorial Assessment - 12 Azure application	2%	Week 12 Due date: 19 May 2024 at 23:59	N/A
Outcomes assessed:
Tutorial quiz	Quiz - 2 MCQ quiz during the tutorial	5%	Week 12	15 minutes quiz
Outcomes assessed:
Assignment	Assignment 2 - Cloud Security Consultancy Report 2 A report to be submitted	15%	Week 13 Due date: 26 May 2024 at 23:59	30 pages
Outcomes assessed:
= hurdle task ? = group assignment ?

Assessment summary

Cloud Security Consultancy Report - 1&2 – Students work as groups to submit a report addressing various cloud secuirty aspects of a real life scenario.

Tutorial Assessments - Individual and group weekly tutorial assessments using Azure platform. Submittion usually is done during the lab or at the end of that week.

Quizzes - Two individual MCQ quizzes.

Final Exam – Closed book final exam. Students must score at least 40% in the final exam to pass the unit (see Pass requirements).

Conditions for pass in this unit:

At least 40% in the final exam
At least 50% total

Assessment criteria

The University awards common result grades, set out in the Coursework Policy 2014 (Schedule 1).

As a general guide, a high distinction indicates work of an exceptional standard, a distinction a very high standard, a credit a good standard, and a pass an acceptable standard.

Result name	Mark range	Description
High distinction	85 - 100	Awarded when you demonstrate the learning outcomes for the unit at an exceptional standard, as defined by grade descriptors or exemplars outlined by your faculty or school.
Distinction	75 - 84	Awarded when you demonstrate the learning outcomes for the unit at a very high standard, as defined by grade descriptors or exemplars outlined by your faculty or school.
Credit	65 - 74	Awarded when you demonstrate the learning outcomes for the unit at a good standard, as defined by grade descriptors or exemplars outlined by your faculty or school.
Pass	50 - 64	Awarded when you demonstrate the learning outcomes for the unit at an acceptable standard, as defined by grade descriptors or exemplars outlined by your faculty or school.
Fail	0 - 49	When you don’t meet the learning outcomes of the unit to a satisfactory standard.

For more information see guide to grades.

Late submission

In accordance with University policy, these penalties apply when written work is submitted after 11:59pm on the due date:

Deduction of 5% of the maximum mark for each calendar day after the due date.
After ten calendar days late, a mark of zero will be awarded.

This unit has an exception to the standard University policy or supplementary information has been provided by the unit coordinator. This information is displayed below:

5% for each late day

Academic integrity

The Current Student website provides information on academic integrity and the resources available to all students. The University expects students and staff to act ethically and honestly and will treat all allegations of academic integrity breaches seriously.

We use similarity detection software to detect potential instances of plagiarism or other forms of academic integrity breach. If such matches indicate evidence of plagiarism or other forms of academic integrity breaches, your teacher is required to report your work for further investigation.

You may only use artificial intelligence and writing assistance tools in assessment tasks if you are permitted to by your unit coordinator, and if you do use them, you must also acknowledge this in your work, either in a footnote or an acknowledgement section.

Studiosity is permitted for postgraduate units unless otherwise indicated by the unit coordinator. The use of this service must be acknowledged in your submission.

Learning support

Simple extensions

If you encounter a problem submitting your work on time, you may be able to apply for an extension of five calendar days through a simple extension.  The application process will be different depending on the type of assessment and extensions cannot be granted for some assessment types like exams.

Special consideration

If exceptional circumstances mean you can’t complete an assessment, you need consideration for a longer period of time, or if you have essential commitments which impact your performance in an assessment, you may be eligible for special consideration or special arrangements.

Special consideration applications will not be affected by a simple extension application.

Using AI responsibly

Co-created with students, AI in Education includes lots of helpful examples of how students use generative AI tools to support their learning. It explains how generative AI works, the different tools available and how to use them responsibly and productively.

Support for students

The Support for Students Policy 2023 reflects the University’s commitment to supporting students in their academic journey and making the University safe for students. It is important that you read and understand this policy so that you are familiar with the range of support services available to you and understand how to engage with them.

The University uses email as its primary source of communication with students who need support under the Support for Students Policy 2023. Make sure you check your University email regularly and respond to any communications received from the University.

Learning resources and detailed information about weekly assessment and learning activities can be accessed via Canvas. It is essential that you visit your unit of study Canvas site to ensure you are up to date with all of your tasks.

If you are having difficulties completing your studies, or are feeling unsure about your progress, we are here to help. You can access the support services offered by the University at any time:

Support and Services (including health and wellbeing services, financial support and learning support)
Course planning and administration
Meet with an Academic Adviser

Weekly schedule

WK	Topic	Learning activity
Week 01	Course Introduction, Cloud Concepts and Designs	Lecture (1.5 hr)
Week 01	Microsoft Azure introduction	Tutorial (1.5 hr)
Week 02	Cloud Data Security and Privacy	Lecture (1.5 hr)
Week 02	Azure Storage and Storage Encryption	Tutorial (1.5 hr)
Week 03	Identity and Access Management (IAM) Technologies	Lecture (1.5 hr)
Week 03	Azure IAM	Tutorial (1.5 hr)
Week 04	Application Security	Lecture (1.5 hr)
Week 04	Azure Key Vault and Data Encryption	Tutorial (1.5 hr)
Week 05	Infrastructure Security	Lecture (1.5 hr)
Week 05	Microsoft Threat Modelling	Tutorial (1.5 hr)
Week 06	Network Security	Lecture (1.5 hr)
Week 06	Azure network security Types in Microsoft Azure	Tutorial (1.5 hr)
Week 07	Container Security	Lecture (1.5 hr)
Week 07	Azure Networking	Tutorial (1.5 hr)
Week 08	Vulnerability Management	Lecture (1.5 hr)
Week 08	Docker	Tutorial (1.5 hr)
Week 09	Security as a Service (SECaaS)	Lecture (1.5 hr)
Week 10	Auditing and Compliance	Lecture (1.5 hr)
Week 10	Azure Docker	Tutorial (1.5 hr)
Week 11	Incident Management and Response	Lecture (1.5 hr)
Week 11	Azure DevOps	Tutorial (1.5 hr)
Week 12	Incident Management and Response	Lecture (1.5 hr)
Week 12	Security Alerts, Azure Sentinel and WAF	Tutorial (1.5 hr)
Week 13	Revision and Exam Review	Lecture (1.5 hr)
Week 13	Revision and Question Answer	Tutorial (1.5 hr)

Attendance and class requirements

Attendance for tutorials is mandatory, and it is essential that you review the tutorial content in advance of each session. Your proactive preparation will enhance the overall learning experience

Study commitment

Typically, there is a minimum expectation of 1.5-2 hours of student effort per week per credit point for units of study offered over a full semester. For a 6 credit point unit, this equates to roughly 120-150 hours of student effort in total.

Required readings

1- Book: Security, Privacy, and Digital Forensics in the Cloud (2019) by Lei Chen, Hassan Takabi, Nhien-An Le-Khac

2- Book: (ISC)2 CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition by Mike Chapple, David Seidl

3- Book: Practical Cloud Security (2019) by Chris Dotson

4- NIST Special Publication 800-190 : Application Container Security Guide

Learning outcomes

Learning outcomes are what students know, understand and are able to do on completion of a unit of study. They are aligned with the University's graduate qualities and are assessed as part of the curriculum.

Outcomes
Graduate qualities

At the completion of this unit, you should be able to:

LO1. Understand the basic concepts, architecture, and design principles of cloud computing.
LO2. Comprehend and apply strategies for cloud data security and privacy.
LO3. Recognize and evaluate cloud infrastructure security risks, vulnerabilities and threats.
LO4. Demonstrate knowledge of application security practices, including secure coding and application testing, in cloud environments.
LO5. Explore the concepts of identity and access management (IAM) and how they are implemented in the cloud.
LO6. Analyze network security risks and deploy effective security controls in cloud environments.
LO7. Learn the best practices for container security and how to secure containerized applications.
LO8. Develop skills for managing vulnerabilities and threats in the cloud environment and explore different techniques to secure it.
LO9. Develop an understanding of Security as a Service (SECaaS) and its benefits to the cloud customers.
LO10. Describe and research various cloud security standards to ensure regulatory and legal requirements fulfillment.
LO11. Develop a deep understanding of cloud incident response frameworks, methodologies, and processes and how to contain and mitigate security incidents.

Graduate qualities

The graduate qualities are the qualities and skills that all University of Sydney graduates must demonstrate on successful completion of an award course. As a future Sydney graduate, the set of qualities have been designed to equip you for the contemporary world.

GQ1	Depth of disciplinary expertise Deep disciplinary expertise is the ability to integrate and rigorously apply knowledge, understanding and skills of a recognised discipline defined by scholarly activity, as well as familiarity with evolving practice of the discipline.
GQ2	Critical thinking and problem solving Critical thinking and problem solving are the questioning of ideas, evidence and assumptions in order to propose and evaluate hypotheses or alternative arguments before formulating a conclusion or a solution to an identified problem.
GQ3	Oral and written communication Effective communication, in both oral and written form, is the clear exchange of meaning in a manner that is appropriate to audience and context.
GQ4	Information and digital literacy Information and digital literacy is the ability to locate, interpret, evaluate, manage, adapt, integrate, create and convey information using appropriate resources, tools and strategies.
GQ5	Inventiveness Generating novel ideas and solutions.
GQ6	Cultural competence Cultural Competence is the ability to actively, ethically, respectfully, and successfully engage across and between cultures. In the Australian context, this includes and celebrates Aboriginal and Torres Strait Islander cultures, knowledge systems, and a mature understanding of contemporary issues.
GQ7	Interdisciplinary effectiveness Interdisciplinary effectiveness is the integration and synthesis of multiple viewpoints and practices, working effectively across disciplinary boundaries.
GQ8	Integrated professional, ethical, and personal identity An integrated professional, ethical and personal identity is understanding the interaction between one’s personal and professional selves in an ethical context.
GQ9	Influence Engaging others in a process, idea or vision.

Outcome map

Learning outcomes	Graduate qualities
Learning outcomes

Responding to student feedback

This section outlines changes made to this unit following staff and student reviews.

new course created

Additional information

N/A

Additional costs

N/A

Site visit guidelines

N/A

Work, health and safety

N/A

Disclaimer

The University reserves the right to amend units of study or no longer offer certain units, including where there are low enrolment numbers.

To help you understand common terms that we use at the University, we offer an online glossary.

Current students

Overview

Overview

Unit details and rules

Teaching staff

Assessment

Assessment

Assessment summary

Assessment criteria

Late submission

Academic integrity

Learning support

Learning support

Simple extensions

Special consideration

Using AI responsibly

Support for students

Weekly schedule

Weekly schedule

Attendance and class requirements

Study commitment

Required readings

Learning outcomes

Learning outcomes

Graduate qualities

Outcome map

Responding to student feedback

Responding to student feedback

Additional information

Additional information

Additional costs

Site visit guidelines

Work, health and safety

Disclaimer

On this page

Useful links

Media

Student links

About us

Connect

Current students

CSEC5615: Cloud Security

Semester 1, 2024 [Normal evening] - Camperdown/Darlington, Sydney

Overview

Overview

Unit details and rules

Teaching staff

Assessment

Assessment

Assessment summary

Assessment criteria

Late submission

Academic integrity

Learning support

Learning support

Simple extensions

Special consideration

Using AI responsibly

Support for students

Weekly schedule

Weekly schedule

Attendance and class requirements

Study commitment

Required readings

Learning outcomes

Learning outcomes

Graduate qualities

Outcome map

Responding to student feedback

Responding to student feedback

Additional information

Additional information

Additional costs

Site visit guidelines

Work, health and safety

Disclaimer

On this page

Useful links

Media

Student links

About us

Connect