Digital Business Risks
Duration
- One Semester or equivalent
Contact hours
- 36 hours
Aims and objectives
Final Offering 2020 (replaced with INF80043)
This unit presents the foundations for information risk and security management in the digital and networked enterprise. Students will develop a critical understanding of the information technology risk and security issues that managers face when doing business, including consideration of the impacts of new and emerging technologies, changing business models, cyber security threats and vulnerabilities. The unit focuses on developing the management knowledge and techniques required for the implementation of effective risk and security management strategies including processes for information governance and assurance. The legal, professional and ethical responsibilities of information risk and security management are examined through real and applied cases.
Students who successfully complete this unit will be able to:
1. Demonstrate a critical understanding of information security and risks management in achieving business goals and objectives.
2. Critically reflect on and evaluate the challenges of the multitude of factors (e.g. new and emerging technologies, cyber threats, human, organisation, nature, environment, politics) for information risk and security management.
3. Research and analyse major theories, concepts and methodologies for managing risks and assuring the integrity and security of information assets.
4. Evaluate and adopt a critical approach to information risk and security management planning including making recommendations based on sound theory and practice.
Unit information in detail
- Teaching methods, assessment, general skills outcomes and content.
Teaching methods
Block Mode:
This unit will be delivered in block or intensive mode. Block mode may consist of blended, intensive and immersive teaching, which can include full day teaching and weekend teaching requirements.
Student workload:
This includes all:
• Scheduled teaching and learning events and activities (contact hours timetabled in a face-to-face teaching space) and scheduled online learning events (contact hours scheduled in an online teaching space), and
• Non-scheduled learning events and activities (including directed online learning activities, assessments, independent study, student group meetings, and research.
To be successful, students should:
• Attend and engage in all scheduled classes (face to face or online)
• Start assessment tasks well ahead of the due date, and submit assessments promptly
• Read / listen to all feedback carefully, and consider it for future assessment
• Engage with fellow students and teaching staff (don’t hesitate to ask questions)
Assessment
1. Project (Group) 30 - 40%
2. Assignment (Individual) 40 - 60%
3. Portfolio (Individual) 10 - 20%
General skills outcomes
During this unit students will receive feedback on the following key generic skills:
• Problem solving skills
• Analysis skills
• Communication skills
• Ability to tackle unfamiliar problems
• Ability to work independently
Content
• Theoretical foundations and concepts of strategic business risk, risk, risk management, risk assessment and risk mitigation.
• Information security management, governance and assurance; including strategy, standards, and best practices.
• Contingency planning, including incident management, business continuity and disaster recovery planning.
• Challenges and issues affecting information risk and security planning e.g. computer crime, cybersecurity, new and emerging technologies, new business models, human, organisation, nature, environment, regulations, politics.
• Compliance frameworks and legal, professional and ethical issues in IS security and risk management.
Study resources
- Reading materials.
Reading materials
Students are advised to check the unit outline in the relevant teaching period for appropriate textbooks and further reading.