Skip to main content

Information Security ManagementLaajuus (5 cr)

Study unit code: TO00BR90

Credits

5 op

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

19.05.2025 - 25.05.2025

Timing

01.08.2025 - 31.12.2025

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

20 - 45

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Degree Programme in Business Information Technology, Cyber Security (NCA2), Laurea Leppävaara
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Seppo Koponen
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • NCA224SA
    Degree Programme in Business Information Technology, Cyber Security, virtual studies, S24, Leppävaara
  • CCN225SY
    Complementary competence (bachelor’s studies in English), S25, Information and Communication Technologies (ICT)
  • TON225SY
    Täydentävä osaaminen (amk-tutkinto), S25, Tietojenkäsittely ja tietoliikenne (ICT)

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Grading scale

H-5

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

25.11.2024 - 01.12.2024

Timing

24.03.2025 - 01.06.2025

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

20 - 50

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Tietojenkäsittelyn koulutus, kyberturvallisuus (NKA2), Laurea Leppävaara (Finnish)
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Seppo Koponen
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • TON224SY
    Täydentävä osaaminen (amk-tutkinto), S24, Tietojenkäsittely ja tietoliikenne (ICT)
  • CCN224SY
    Complementary competence (bachelor’s studies in English), S24, Information and Communication Technologies (ICT)
  • NKA224KA
    Tietojenkäsittelyn koulutus, kyberturvallisuus, monimuotototeutus, K24, Leppävaara

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should have finished following compulsory ICT-studies or have equivalent competence: R0240 ICT-Toimintaympäristö / R0277 The ICT Environment and Infrastructure and R0242 Tietoverkot ja tietoturva / R0280 Data Networks and Information Security)

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not the certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence before or during the Orientation-module

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC), Nixu and Elisa

Important dates

- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 10 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Group work
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

20.05.2024 - 26.05.2024

Timing

07.10.2024 - 15.12.2024

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

20 - 40

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Degree Programme in Business Information Technology, Cyber Security (NCA2), Laurea Leppävaara
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Seppo Koponen
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • TON224SY
    Täydentävä osaaminen (amk-tutkinto), S24, Tietojenkäsittely ja tietoliikenne (ICT)
  • CCN224SY
    Complementary competence (bachelor’s studies in English), S24, Information and Communication Technologies (ICT)
  • NCA223SA
    Degree Programme in Business Information Technology, Cyber Security, virtual studies, S23, Leppävaara

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should have finished following compulsory ICT-studies or have equivalent competence: R0240 ICT-Toimintaympäristö / R0277 The ICT Environment and Infrastructure and R0242 Tietoverkot ja tietoturva / R0280 Data Networks and Information Security)

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not the certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence before or during the Orientation-module

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC), Nixu and Elisa

Important dates

- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 10 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Group work
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

27.11.2023 - 03.12.2023

Timing

25.03.2024 - 02.06.2024

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

40 - 50

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Seppo Koponen
  • Leo Johannesberg
  • Paresh Rathod
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • CCN223SY
    Complementary competence (bachelor’s studies in English), S23, Information and Communication Technologies (ICT)
  • TON223SY
    Täydentävä osaaminen (amk-tutkinto), S23, Tietojenkäsittely ja tietoliikenne (ICT)
  • NKA223KA
    Tietojenkäsittelyn koulutus, kyberturvallisuus, monimuotototeutus, K23, Leppävaara

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should have finished following compulsory ICT-studies or have equivalent competence: (R0240/R0277 The ICT Environment and Infrastructure and R0242/R0280 Data Networks and Information Security)

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not the certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence before or during the Orientation-module

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC), Nixu and Elisa

Important dates

- Study unit starts on week 41 (preliminary plan)
- Study unit ends on week 49 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 10 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Group work
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

22.05.2023 - 28.05.2023

Timing

09.10.2023 - 17.12.2023

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

RDI proportion

2 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

40 - 50

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Seppo Koponen
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • CCN223SY
    Complementary competence (bachelor’s studies in English), S23, Information and Communication Technologies (ICT)
  • NKA222SA
    Tietojenkäsittelyn koulutus, kyberturvallisuus, monimuotototeutus, S22, Leppävaara
  • TON223SY
    Täydentävä osaaminen (amk-tutkinto), S23, Tietojenkäsittely ja tietoliikenne (ICT)

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should have finished following compulsory ICT-studies or have equivalent competence: (R0240/R0277 The ICT Environment and Infrastructure and R0242/R0280 Data Networks and Information Security)

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not the certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence before or during the Orientation-module

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC), Nixu and Elisa

Important dates

- Study unit starts on week 41 (preliminary plan)
- Study unit ends on week 49 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 10 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Group work
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

11.09.2023 - 17.09.2023

Timing

09.10.2023 - 17.12.2023

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

RDI proportion

2 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

40 - 50

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Seppo Koponen
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • CCN223SY
    Complementary competence (bachelor’s studies in English), S23, Information and Communication Technologies (ICT)
  • TON223SY
    Täydentävä osaaminen (amk-tutkinto), S23, Tietojenkäsittely ja tietoliikenne (ICT)
  • NCA222SA
    Degree Programme in Business Information Technology, Cyber Security, blended learning, S22, Leppävaara

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should have finished following compulsory ICT-studies or have equivalent competence: (R0240/R0277 The ICT Environment and Infrastructure and R0242/R0280 Data Networks and Information Security)

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not the certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence before or during the Orientation-module

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC), Nixu and Elisa

Important dates

- Study unit starts on week 41 (preliminary plan)
- Study unit ends on week 49 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 10 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Group work
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

06.02.2023 - 12.02.2023

Timing

27.03.2023 - 04.06.2023

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

RDI proportion

2 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

40 - 50

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Seppo Koponen
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • NKA222KA
    Tietojenkäsittelyn koulutus, kyberturvallisuus, monimuotototeutus, K22, Leppävaara
  • TON222SY
    Laurea täydentävä osaaminen (amk-tutkinto), S22, Tietojenkäsittely ja tietoliikenne (ICT)
  • CCN222SY
    Complementary competence (bachelor’s studies), S22, Information and Communication Technologies (ICT)

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should have finished following compulsory ICT-studies or have equivalent competence: (R0277 The ICT Environment and Infrastructure and R0280 Data Networks and Information Security)

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not the certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence before or during the Orientation-module

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC), Nixu and Elisa

Important dates

- Study unit starts on week 13 (preliminary plan)
- Study unit ends on week 22 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 10 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Group work
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

23.05.2022 - 29.05.2022

Timing

10.10.2022 - 18.12.2022

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

40 - 50

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Degree Programme in Business Information Technology, Cyber Security (NCA2), Laurea Leppävaara
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Paresh Rathod
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • TON222SY
    Laurea täydentävä osaaminen (amk-tutkinto), S22, Tietojenkäsittely ja tietoliikenne (ICT)
  • NCA221SA
    Degree Programme in Business Information Technology, Cyber Security, blended learning, S21, Leppävaara
  • CCN222SY
    Complementary competence (bachelor’s studies), S22, Information and Communication Technologies (ICT)

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should have finished following compulsory ICT-studies or have equivalent competence: (R0277 The ICT Environment and Infrastructure and R0280 Data Networks and Information Security)

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC)

Important dates

- Study unit starts on week 41 (preliminary plan)
- Study unit ends on week 49 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 9 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-4 and from Module-5 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.

Enrollment

29.11.2021 - 09.01.2022

Timing

24.01.2022 - 29.04.2022

Number of ECTS credits allocated

5 op

Virtual proportion

5 op

Mode of delivery

Distance learning

Unit

Laurea Leppävaara, tiko

Campus

Laurea Virtual Campus

Teaching languages
  • English
Seats

40 - 50

Degree programmes
  • Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
  • Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
  • Paresh Rathod
  • Pasi Kämppi
Teacher in charge

Pasi Kämppi

Groups
  • TON221SY
    Laurea täydentävä osaaminen (amk-tutkinto), S21, Tietojenkäsittely ja tietoliikenne (ICT)
  • CCN221SY
    Complementary competence (bachelor’s studies), S21, Information and Communication Technologies (ICT)

Learning outcomes

The student is able to
- act ethically as a member of study group and community
- comprehend, explain and apply information security program
development and management principles
- comprehend, explain and apply risk management, incident
management and compliance principles
- plan, implement and finalize risk assessment process
- analyze typical information security management related
problems and draw solutions to them
- reflect and develop their own learning process

Teaching methods

- This study unit is partially automated online learning associated with workshops and tutoring meetings with the teachers.
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers.
- Virtual studies, weekly basis virtual learning, assignments, groupwork and expert lectures/workshops
- NOTE: Student should finish compulsory ICT-studies (TIKO: R0240, R0241 & R0242, BIT: R0277, R0279 & R0280) OR the student should have equivalent competence with the aforementioned study units before enrolling to this study unit

Learning materials and recommended literature

- Learning material is based on Certified Information Security Manager (CISM) certification training material
- Video material
- Course book (CISM Exam Guide 2018, Gregory, Peter H.)
- The study unit provides preparatory training for CISM but not certification exam

Alternative completion methods of implementation

- If a student has existing domain specific competence he/she can request a process for recognition of existing competence

Co-operation with working life and/or RDI

- The study unit offers expert lecturers/workshops
- Worklife partner for this semester: PricewaterhouseCoopers (PwC)

Important dates

- Study unit starts on week 4 (preliminary plan)
- Study unit ends on week 10 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes

Students workload

- 5 cr / 137,5 hours
- Study unit will last 11 weeks

Content and scheduling

- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-4 and from Module-5 to Module-8

Module-0: Induction and Study Plan
Module-1: Info Sec Governance Part 1
Module-2: Info Sec Governance Part 2
Module-3: Information Risk Management-1
Module-4: Information Risk Management-2
Module-5: Info Sec Program Dev Part 1
Module-6: Info Sec Program Dev Part 2
Module-7: Info Sec Incident Man Part 1
Module-8: Info Sec Incident Man Part 2

Further information for students

- The study unit is prioritized for the students who study cyberseecurity as their major
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after orientation period (the first week of the study unit)

Grading scale

H-5

Evaluation methods and criteria

- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Workshops
- Possible bonus task

Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0

Evaluation criteria, satisfactory (1-2)

– use professional concepts in a consistent manner and demonstrate his/her familiarity with the knowledge basis
– report and communicate in a professional manner
– act independently taking into account the operating environment
– describe the significance of his/her actions for successful co-operation
– describe his/her competence in relation to the learning outcomes

Evaluation criteria, good (3-4)

– critically evaluate information and justify their actions with science-based knowledge
– propose creative solutions at work
- describe the development of his/her competence in relation to the learning outcomes

Evaluation criteria, excellent (5)

– analyse the acquired information, draw conclusions and combine theoretical knowledge with experiential knowledge
– evaluate the applicability of produced knowledge, skill or idea to other contexts as well as their impact
– evaluate the possibilities for utilising competence and plan his/her personal development

Qualifications

TIKO and BIT students: Compulsory ICT-studies
Or equivalent competence.