Module Details
| Module Code: |
CYBR9025 |
| Title: |
Cyber Commercialisation
|
|
Long Title:
|
Cyber Commericalisation
|
| NFQ Level: |
Expert |
| Valid From: |
Semester 1 - 2024/25 ( September 2024 ) |
| Field of Study: |
4811 - Computer Science
|
| Module Delivered in: |
no programmes
|
| Module Description: |
In this module, learners will learn how to carry out a market analysis and assessment for their proposed product/service/solution. As part of this module learners will also learn about the EU market, EU and international laws, standards and regulations that may influence how a product is developed and may potentially have to comply with. Learners will also learn about cyber security risk and associated frameworks, so they understand how their product/service or solution would fit into an overall cyber risk strategy of an organisation, which is essential information when pitching for investment or selling their solution to their identified customer segment. The learners will work in teams throughout this module.
|
| Learning Outcomes |
| On successful completion of this module the learner will be able to: |
| # |
Learning Outcome Description |
| LO1 |
Formulate a market assessment of a cyber security start-up opportunity using market research techniques and tools. |
| LO2 |
Identify and analyse key market trends, drivers, barriers to entry, major market players, potential competitors, market size and target customer segments. |
| LO3 |
Evaluate the impact on how digital sovereignty has influenced policy, funding and regulatory environment in cybersecurity. |
| LO4 |
Interpret cybersecurity laws, standards and regulations to ensure legal compliance for operation in EU and international markets. |
| LO5 |
Evaluate the role of the Chief Information Security Officer (CISO), IT Administrators and governance/management boards have in evaluating a cyber security product, service and solution. |
| LO6 |
Evaluate how the cybersecurity product/service/solution will fit into an overall Cybersecurity Risk Management strategy for an enterprise. |
| LO7 |
Compile a commericalisation report for the cyber security product/service/solution. |
| Dependencies |
Module Recommendations
This is prior learning (or a practical skill) that is strongly recommended before enrolment in this module. You may enrol in this module if you have not acquired the recommended learning but you will have considerable difficulty in passing (i.e. achieving the learning outcomes of) the module. While the prior learning is expressed as named MTU module(s) it also allows for learning (in another module or modules) which is equivalent to the learning specified in the named module(s).
|
|
Incompatible Modules
These are modules which have learning outcomes that are too similar to the learning outcomes of this module. You may not earn additional credit for the same learning and therefore you may not enrol in this module if you have successfully completed any modules in the incompatible list.
|
| No incompatible modules listed |
Co-requisite Modules
|
| No Co-requisite modules listed |
Requirements
This is prior learning (or a practical skill) that is mandatory before enrolment in this module is allowed. You may not enrol on this module if you have not acquired the learning specified in this section.
|
| No requirements listed |
| Indicative Content |
|
Cyber Security Market trends & analysis
Cyber Security Market Segment trends. Size of the obtainable/addressable market, the target customer segment(s), identify potential early adopters and who the purchasers will be. SWOT and PESTEL analysis tools. Use these to identify and describe relevant market trends, drivers, barriers to entry, legal requirement and other market dynamics that challenge and/or make the start-up opportunity attractive. Role of adversaries and threat actors.
|
|
Analysing Cyber Competitors
How to outline who the relevant major market players are, how they operate in the marketplace, what are their business models and what resources do they have to protect their market share. Compare your proposed solution to direct, existing solutions and/or alternatives and emerging innovations/technologies including technologies still in R+D in other universities and institutions. Review Cyber Security Sectoral Analysis reports to identify national, EU and international competitors.
|
|
Cyber Security Governance
Role of CISOs, IT administrator and role of boards in managing cyber risk. How these stakeholders make decisions when investing in cyber security products, services and solutions. Legal responsibilities of CISO and boards.
|
|
Digital Sovereignty - Impact to policy, markets and funding
Digital Sovereignty, what is is? Relevance to the private sector. Threats to Digital sovereignty. Supply chain risk, strengthening domestic technology. EU - Cybersecurity Act, Chips Act, US - National Quantum Initiative, CHIPs act, Blacklist. China - Cybersecurity law, Global Initiative of data security, Amended Counterespionage Law, Blacklisting. AI and Digital Sovereignty. What is required for the EU to reach a min level of digital sovereignty. Cyber Policies.
|
|
EU and US Cybersecurity Landscape
EU Cybersecurity Threat Landscape, EU Cybersecurity Strategy, NIS Directives, EU Cybersecurity Act 2023, EU Cyber Resilience Act, EU AI Act. US Cybersecurity Legislation (Federal, State, HIPAA), US Cybersecurity Regulations (SEC – SOX Controls & FTC), US Cybersecurity Standards (NIST, FedRAMP, PCI)
|
|
Law & Standards for Cyber Security Businesses
Personally Identifiable Information (PII), Criminal Justice (Offences Relating to Information Systems) Act 2017. USA : CFA Act, CSA Act, ECPA, GLB Act, SOX, DMCA, CCPA, MITRE. Personal Health Information (PHI) Health Insurance Portability and Accountability Act of 1996 (HIPAA). Payment Card Industry (PCI) Data Security Standard (DSS). Information Security & GDPR.
|
|
Enterprise Risk Management
Enterprise Risk Management, Setting Risk Appetite & Tolerance and the impact on Enterprise activities, Integrating Cybersecurity Risk with Enterprise Risk, Cybersecurity Frameworks (including NIST, ISO 27001), Strategic Risk Management
|
|
Commericalisation Fund/Report
Enterprise Ireland Commericalisation funding. Overview of application process. Application form - commercial opportunity, opportunity/market, competitive analysis, exploitation and impact.
|
|
Module Content & Assessment
|
| Assessment Breakdown | % |
|---|
| Coursework | 100.00% |
Assessments
| No End of Module Formal Examination |
| Reassessment Requirement |
Coursework Only
This module is reassessed solely on the basis of re-submitted coursework. There is no repeat written examination.
|
The University reserves the right to alter the nature and timings of assessment
Module Workload
| Workload: Full Time |
| Workload Type |
Contact Type |
Workload Description |
Frequency |
Average Weekly Learner Workload |
Hours |
| Lecture |
Contact |
Lectures to support delivery of content/learning outcomes. |
Every Week |
2.00 |
2 |
| Lab |
Contact |
Lab to support learning outcomes. |
Every Week |
2.00 |
2 |
| Independent & Directed Learning (Non-contact) |
Non Contact |
Independent and directed learning. |
Every Week |
10.00 |
10 |
| Total Hours |
14.00 |
| Total Weekly Learner Workload |
14.00 |
| Total Weekly Contact Hours |
4.00 |
| Workload: Part Time |
| Workload Type |
Contact Type |
Workload Description |
Frequency |
Average Weekly Learner Workload |
Hours |
| Lecture |
Contact |
Lectures to support delivery of content/learning outcomes. |
Every Week |
2.00 |
2 |
| Tutorial |
Contact |
Lab to support learning outcomes. |
Every Week |
2.00 |
2 |
| Independent & Directed Learning (Non-contact) |
Non Contact |
Independent and directed learning. |
Every Week |
10.00 |
10 |
| Total Hours |
14.00 |
| Total Weekly Learner Workload |
14.00 |
| Total Weekly Contact Hours |
4.00 |
|
Module Resources
|
| Recommended Book Resources |
|---|
-
Naresh K. Malhotra,David F. Birks,Daniel Nunan. (2017), Marketing Research, 5th. Pearson Education Limited, [ISBN: 9781292103129].
-
Gregory J. Skulmoski. (2022), Shields Up, 1. Business Expert Press, p.151, [ISBN: 9781637422908].
-
SUTTON. (2021), Information Risk Management, 2. BCS, The Chartered Institute for IT, p.242, [ISBN: 9781780175720].
| | Supplementary Book Resources |
|---|
-
John Fahy,David Jobber. Foundations of Marketing, 6th. [ISBN: 9781526847348].
-
Yvonne McGivern. (2021), The Practice of Market Research, 5th. Pearson, [ISBN: 1292331364].
-
David Jobber,Fiona Ellis-Chadwick. (2019), Principles and Practice of Marketing, McGraw-Hill Education, Europe, Middle East & Africa,, [ISBN: 9781526847232].
-
GARY. KOTLER ARMSTRONG (PHILIP. OPRESNIK, MARC OLIVER.),Philip Kotler,Marc Oliver Opresnik. Marketing, 14th. [ISBN: 9781292294865].
-
Ryan Ellis,Vivek Mohan. (2019), Rewired, 1. John Wiley & Sons, p.352, [ISBN: 978-1-118-88821-6].
| | Recommended Article/Paper Resources |
|---|
-
ECSO. (2024), ECSO Position Paper on the Cyber
Resilience Act,
| | Other Resources |
|---|
-
Website, Market Research Centre, Enterprise Ireland,
-
Website, MTU. Essentials of Marketing Research, Pearson,
-
Website, MTU. (2024), MTU Library,
-
Website, 2024. The Marketing Institute of Ireland,
-
Website, Kantar, https://www.kantar.com/.
-
Website, The Drum,
-
Website, ENISA,
-
Website, ECSO,
-
Website, Cyber Investor Days,
-
Website, Cyber Solution Days,
-
Website, EU Cybersecurity Investor Platform,
-
Website, NIST. (2024), NIST Cybersecurity Framework 2.0, National Institute of Standards &
Technology,
-
Website, ISO International Organization for
Standardization. (2018), ISO 31000 Risk Management Guidelines, ISO,
-
Website, MITRE,
-
Website, MITRE ATT&CK,
-
Website, Versus Total,
| |