CLOUD SECURITY - 2025/6
Module code: COMM065
Module Overview
This module teaches cloud computing concepts and the security of the cloud platform to enable students to understand how to secure workloads on cloud. The topics including basic concepts and the core security services needed to secure workloads and the processing of sensitive data. To re-enforce learning, the module will require students to work in teams to configure the cloud platform using infrastructure automation.
Module provider
Computer Science and Electronic Eng
Module Leader
BUCKWELL Mark (CS & EE)
Number of Credits: 15
ECTS Credits: 7.5
Framework: FHEQ Level 7
Module cap (Maximum number of students): N/A
Overall student workload
Independent Learning Hours: 80
Lecture Hours: 24
Laboratory Hours: 20
Guided Learning: 6
Captured Content: 20
Module Availability
Semester 2
Prerequisites / Co-requisites
none
Module content
The content taught includes the following topics in Cloud Computing and Cloud Security:
- Cloud Computing Concepts
- Cloud Asset Management and Protection
- Security Principles and Concepts
- Identity and Access Management
- Network Security, e.g., virtual private cloud, edge protection
- Application Security
- Data Protection
- End-Point Protection
- Detecting and Responding to Threats
- Supporting Services
The topics are focused on practical implementation of security controls for workloads in cloud that can be applied during group coursework.
Note: with the rapid changes in cloud computing and security, the topics are indicative of the content and may be updated to reflect current developments in the industry.
Assessment pattern
| Assessment type | Unit of assessment | Weighting |
|---|---|---|
| Project (Group/Individual/Dissertation) | Assessment 1 | 40 |
| Examination | Assessment 2 | 60 |
Alternative Assessment
Coursework
Assessment Strategy
The assessment strategy is designed to provide students with the opportunity to demonstrate that they have achieved the module’s learning outcomes.
The summative assessment for this module consists of:
A group project where the students work together to automate the deployment, configuration and compliance for the infrastructure for a cloud workload. (LO3, LO4)
A final exam testing students’ understanding of key concepts of cloud security principles. (LO1, LO2)
Formative assessment and feedback
Formative feedback will be given regularly through the Group Exercises that support the lecture material each week.
Module aims
- The aim of this module is to equip students with background knowledge and practical experience of cloud computing and the security services used to secure workloads. The module will explain overall cloud computing concepts and security of the cloud platform, as well as provide students with hands-on experiences with cloud computing and security services.
Learning outcomes
| Attributes Developed | ||
| 001 | Understand cloud computing concepts, the benefits and core building blocks. | KT |
| 002 | Understand the types of security services domains and capabilities used for securing the data being processed by workloads on a cloud platform. | KCT |
| 003 | Use configuration management and automation to deploy cloud security. | KPT |
| 004 | Use policy management and compliance management tooling to configure and enforce compliance of cloud security controls. | KPT |
Attributes Developed
C - Cognitive/analytical
K - Subject knowledge
T - Transferable skills
P - Professional/Practical skills
Methods of Teaching / Learning
The learning and teaching methods include weekly lectures incorporating in-class discussions and exercises.
These sessions will be divided as required between lectures with class discussion and group work to support the lecture material.
Students will be expected to undertake self-study where necessary, and to prepare appropriately for assessments.
Indicated Lecture Hours (which may also include seminars, tutorials, workshops and other contact time) are approximate and may include in-class tests where one or more of these are an assessment on the module. In-class tests are scheduled/organised separately to taught content and will be published on to student personal timetables, where they apply to taken modules, as soon as they are finalised by central administration. This will usually be after the initial publication of the teaching timetable for the relevant semester.
Reading list
https://readinglists.surrey.ac.uk
Upon accessing the reading list, please search for the module using the module code: COMM065
Other information
Digital Capabilities
Computer Security is vital to all aspects of life and this module teaches skills to secure a system at the organisational level. It teaches students how to reason about and develop systems that are secure. These skills are now fundamental to developing any large-scale computer system.
Employability
This module provides a standards-based approach to security that allows students to reason about assets and risks associated with these assets with large scale and cloud-based computer systems. Students are equipped with theory and practical problem-solving skills that allow them to work with and reason about security in computer and networked systems at the organisational level.
Global and Cultural Skills
Computer Science is a global language and the tools and languages used on this module can be used internationally. This module allows students to develop skills that will allow them to reason about and develop secure applications with global reach and collaborate with their peers around the world. The global standards-based approach allows students to apply their skills internationally.
Resourcefulness and Resilience
This module involves practical problem-solving skills that teach a student how to reason about security in complex hardware and software systems taking a standards-based approach that is applicable to a wide range of everyday problems. Students are presented with realistic scenarios and work with their peers to identify assets and manage and mitigate risk.
Programmes this module appears in
| Programme | Semester | Classification | Qualifying conditions |
|---|---|---|---|
| Cyber Security MSc | 2 | Optional | A weighted aggregate mark of 50% is required to pass the module |
| Cyber Security with Professional Postgraduate Year MSc | 2 | Optional | A weighted aggregate mark of 50% is required to pass the module |
| 5G and Future Generation Communication Systems MSc | 2 | Optional | A weighted aggregate mark of 50% is required to pass the module |
Please note that the information detailed within this record is accurate at the time of publishing and may be subject to change. This record contains information for the most up to date version of the programme / module for the 2025/6 academic year.