- One Semester or equivalent
- 36 hours
Aims and objectives
Final Offering 2020 (replaced with INF80043)
This unit presents the foundations for information risk and security management in the digital and networked enterprise. Students will develop a critical understanding of the information technology risk and security issues that managers face when doing business, including consideration of the impacts of new and emerging technologies, changing business models, cyber security threats and vulnerabilities. The unit focuses on developing the management knowledge and techniques required for the implementation of effective risk and security management strategies including processes for information governance and assurance. The legal, professional and ethical responsibilities of information risk and security management are examined through real and applied cases.
Students who successfully complete this unit will be able to:
1. Demonstrate a critical understanding of information security and risks management in achieving business goals and objectives.
2. Critically reflect on and evaluate the challenges of the multitude of factors (e.g. new and emerging technologies, cyber threats, human, organisation, nature, environment, politics) for information risk and security management.
3. Research and analyse major theories, concepts and methodologies for managing risks and assuring the integrity and security of information assets.
4. Evaluate and adopt a critical approach to information risk and security management planning including making recommendations based on sound theory and practice.