Information Security Management (5 op)

Tavoitteet

The student is able to
- evaluate the significance of different roles and the information security organization for the implementation of information security
- evaluate information risks directed at organizations systematically and apply risk management practices
- design an information security management system for an organization
- identify the essential elements of the auditing process and evaluate the possibilities of auditing to develop information security in an organization
- apply standards in the development of information security in an organization
- draw contingency plans for information systems

Aika ja paikka

- Not dependent on place or time (virtual studies)

Oppimateriaali ja suositeltava kirjallisuus

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- The study unit provides preparatory training for CISM but not certification exam

Toteutustapa

- This study unit is fully online learning with the possibilities of volunteer tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning and assignments
--------------------------------------------------------------------------------------------------------------------------------------------------------------------
- Learning material is based on Certified Information Security Manager (CISM) certification training material
- The study unit provides preparatory training for CISM but not certification exam
-------------------------------------------------------------------------------------------------------------------------------------------------------------------
Study unit content:
Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Toteutuksen tärkeät päivämäärät

- Study unit starts on week 35 (preliminary plan)
- Study unit ends on week 45 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Kansainvälisyys toteutuksella

Teachers and students group are international (Finnish and English degree programme students). Study is suitable for exchange students.

Opiskelijan ajankäyttö ja kuormitus

- 5 cr / 137,5 hours
- Study unit will last 11 weeks

Sisältö ja sen jaksotus

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Arviointiasteikko

H-5

Lisätiedot

- Study unit is suitable for any graduate level student. Considering following points:
o Student must know: how company/organization works
o Students knows the basics of ICT-technologies
o Student is able to study with weekly based schedule
- NOTE: Any student who is willing to learn the overview of information security technologies, we recommend to participate following study unit: Introduction to Information Security
- NOTE: TIKO and BIT students are prioritised in the student selection process if the maximum number of the enrolments exceeds