All Studies

Security Engineering

Completed

Designing and building secure systems using secure-by-design principles, controls, and security-focused engineering decisions.

What I Learned

I learned how to integrate security into system design from the start, rather than treating it as an afterthought. The module improved how I think about authentication, access control, secure design choices, and risk reduction in software systems.

Key Concepts

  • Secure-by-design principles
  • Defence in depth
  • Balancing security, usability, and system constraints

Key Topics

  • Authentication and authorisation
  • Applied cryptography concepts
  • Secure system / software design
  • Threat modelling and risk controls
  • Secure development practices
  • Security assurance and testing basics

Practical Takeaways

  • Stronger ability to spot insecure design choices early
  • Better understanding of how security controls work together
  • More confidence building safer software and system designs

Tools & Technologies

  • Threat modelling tools / diagrams
  • Basic security testing tools
  • Linux security concepts
  • OWASP secure coding guidance

References & Resources

  • University of York module materials (COM00155M)
  • OWASP resources
  • NIST and standards-based security guidance
  • Secure coding best-practice materials

Notes

This module complemented Cyber Security Threats by shifting focus from attacker behaviour to how systems should be engineered securely from the start.