Information Technology Forensics

Subject BISY90013 (2011)

Note: This is an archived Handbook entry from 2011.

Credit Points: 12.50
Level: 9 (Graduate/Postgraduate)
Dates & Locations:

This subject has the following teaching availabilities in 2011:

Semester 2, Parkville - Taught on campus.
Pre-teaching Period Start not applicable
Teaching Period not applicable
Assessment Period End not applicable
Last date to Self-Enrol not applicable
Census Date not applicable
Last date to Withdraw without fail not applicable

Timetable can be viewed here. For information about these dates, click here.
Time Commitment: Contact Hours: A total of 36 hours of seminars
Total Time Commitment: Estimated total time commitment of 120 hours per semester

Completion of an undergraduate degree in accounting, finance, law or another relevant discipline or as approved by the Head of Department.

Corequisites: None
Recommended Background Knowledge: None
Non Allowed Subjects: None
Core Participation Requirements:

For the purposes of considering requests for Reasonable Adjustments under the Disability Standards for Education (Cwth 2005), and Students Experiencing Academic Disadvantage Policy, academic requirements for this subject are articulated in the Subject Description, Subject Objectives, Generic Skills and Assessment Requirements for this entry.

The University is dedicated to provide support to those with special requirements. Further details on the disability support scheme can be found at the Disability Liaison Unit website:


Assoc Prof Andrew Lonie


Subject Overview:

In today's world law enforcement is increasingly exposed to evidence embedded in accounting and business information systems. Consequently, there is a greater need for practitioners to acquire specialist knowledge and skills to effectively deal with complex computer technology in investigations. This subject aims to impart detailed knowledge of information technology as well as a thorough understanding of the rigorous requirements of obtaining evidence that will be acceptable in legal. The subject covers the basics of technology, networking, security, the law of evidence, information and communication forensics technology and intrusion forensics as well as the manner in which digital evidence can be identified, preserved, analysed and presented to be acceptable in legal proceedings in Australia.


On successful completion of this subject, students should be able to:

  • Understand the basic workings of information technologies used in the modern business environment, including networking and security;
  • Identify the key aspects of information technology and intrusion forensics when investigating a modern information technology environment;
  • Apply knowledge of intrusion forensics to obtain information which is consistent with the types of evidence being sought;
  • Through the analysis of case studies, demonstrate a high level of understanding of the key tenets of information technology forensics;
  • Describe the various types of computer fraud and detail processes and techniques which may be used to identify potentially fraudulent patterns in data.
  • 2-hour end-of-semester examination (60%)
  • Assignments equivalent to not more than 3000 words (30%)
  • Class participation (10%)
Prescribed Texts:

You will be advised of prescribed texts by your lecturer.

Breadth Options:

This subject is not available as a breadth subject.

Fees Information: Subject EFTSL, Level, Discipline & Census Date
Generic Skills:

On successful completion of this subject, students should have improved the following generic skills:

  • The ability to match the information with types of evidence sought;
  • Critical thinking skills;
  • Oral and written communication skills.
Related Course(s): Graduate Certificate in Business Forensics
Master of Accounting
Master of Accounting
Master of Business and Information Technology
Master of Business and Information Technology
Master of e-Forensics and Enterprise Security

Download PDF version.