Module Details

Module Code: INFO8013
Title: IS Security & Privacy
Long Title: IS Security & Privacy
NFQ Level: Advanced
Valid From: Semester 1 - 2017/18 ( September 2017 )
Duration: 1 Semester
Credits: 5
Field of Study: 4820 - Information Systems
Module Delivered in: 1 programme(s)
Module Description: This module provides students with a thorough exploration of the area of Information Privacy and Security Management.
 
Learning Outcomes
On successful completion of this module the learner will be able to:
# Learning Outcome Description
LO1 Critically evaluate the key concepts of Privacy & Information Security.
LO2 Describe and critically discuss issues in the management of Information Security.
LO3 Describe and critically discuss Issues in IT security governance.
LO4 Critically evaluate Information Security policies, procedures & standards.
Dependencies
Module Recommendations

This is prior learning (or a practical skill) that is strongly recommended before enrolment in this module. You may enrol in this module if you have not acquired the recommended learning but you will have considerable difficulty in passing (i.e. achieving the learning outcomes of) the module. While the prior learning is expressed as named MTU module(s) it also allows for learning (in another module or modules) which is equivalent to the learning specified in the named module(s).
Incompatible Modules
These are modules which have learning outcomes that are too similar to the learning outcomes of this module. You may not earn additional credit for the same learning and therefore you may not enrol in this module if you have successfully completed any modules in the incompatible list.
No incompatible modules listed
Co-requisite Modules
No Co-requisite modules listed
Requirements

This is prior learning (or a practical skill) that is mandatory before enrolment in this module is allowed. You may not enrol on this module if you have not acquired the learning specified in this section.
No requirements listed
 
Indicative Content
Information Security & Privacy Concepts
Privacy Principles From The Law. Key Criteria in Privacy By Design. Privacy Design Strategies. Information Security. Database Privacy & Anonymization.
Management of Information Security
Principles of Information Security Management. Planning for Security. Planning for Contingencies. Information Security Policy. Developing the Information Security Program. Security Management Models. Security Management Practices. Human Resource Considerations.
Governance
Information Security Management Activities. Information Security Objectives and Strategy. Security Planning. Internationally Accepted Information Security Management Practices. Information Security Frameworks and Issuing Bodies. Information Security Management and Assurance Process Integration. IT Risk Management. Management Roles: The IT Auditor and Information Security Officer.
Policies, Procedures & Standards
Information Security Policies, Standards, Guidelines, Baselines & Procedures. Information Security Policy Frameworks: ISO27001, COBIT. Organisation Level Policies. Security Program Level Policies. User Security Policies. System & Control Policies. Information Security Policy Projects.
Societal Issues
Legal & Ethical Issues: The General Data Protection Regulation, Open Data Initiatives. Privacy vs. Security.
Module Content & Assessment
Assessment Breakdown%
Coursework100.00%

Assessments

Coursework
Assessment Type Presentation % of Total Mark 20
Timing Week 3 Learning Outcomes 2,3,4
Assessment Description
A presentation on a contemporary issue in Privacy & Security Management.
Assessment Type Written Report % of Total Mark 30
Timing Week 7 Learning Outcomes 1,2
Assessment Description
Business Report evaluating selected security application.
Assessment Type Other % of Total Mark 50
Timing Week 12 Learning Outcomes 1,2,3,4
Assessment Description
In Class Test
No End of Module Formal Examination
Reassessment Requirement
Repeat examination
Reassessment of this module will consist of a repeat examination. It is possible that there will also be a requirement to be reassessed in a coursework element.

The University reserves the right to alter the nature and timings of assessment

 

Module Workload

Workload: Full Time
Workload Type Contact Type Workload Description Frequency Average Weekly Learner Workload Hours
Lecture Contact Lectures on Privacy & Security Management concepts. Every Week 3.00 3
Independent & Directed Learning (Non-contact) Non Contact Revision of lecture material. Research on contemporary issues and selected software solutions. Every Week 4.00 4
Total Hours 7.00
Total Weekly Learner Workload 7.00
Total Weekly Contact Hours 3.00
Workload: Part Time
Workload Type Contact Type Workload Description Frequency Average Weekly Learner Workload Hours
Lecture Contact Lectures on Privacy & Security Management Concepts. Every Week 3.00 3
Independent & Directed Learning (Non-contact) Non Contact Revision of lecture material. Research on contemporary issues and selected software solutions. Every Week 4.00 4
Total Hours 7.00
Total Weekly Learner Workload 7.00
Total Weekly Contact Hours 3.00
 
Module Resources
Recommended Book Resources
  • Douglas J. Landoll. (2016), Information Security Policies, Procedures, and Standards: A Practitioner's Reference, Auerbach Publications, [ISBN: 978-148224589].
Supplementary Book Resources
  • Richard E. Smith. (2015), Elementary Information Security, 1st Edition. Jones & Bartlett Learning, [ISBN: 978128405593].
  • Evan Wheeler. (2011), Security Risk Management: Building an Information Security Risk Management Program from the Ground Up, 1st Edition. Syngress, [ISBN: 978-159749615].
  • Anil K. Jain. (2011), Introduction to Biometrics, 2011 Edition. Springer, [ISBN: 97803877732].
  • Bel G. Raggad. (2010), Information Security Management: Concepts and Practice, 1st Edition. CRC Press, [ISBN: 978142007854].
This module does not have any article/paper resources
Other Resources
 
Module Delivered in
Programme Code Programme Semester Delivery
CR_BBISY_8 Bachelor of Business (Honours) in Information Systems 8 Mandatory