Introduction to Information Security (5 cr)
Code: TO00BR89-3002
General information
Enrollment
04.04.2022 - 10.04.2022
Timing
02.05.2022 - 31.07.2022
Number of ECTS credits allocated
5 op
Virtual proportion
5 op
Mode of delivery
Distance learning
Unit
Korkeakouluyksikkö D /YAMK
Campus
Laurea Virtual Campus
Teaching languages
- English
Seats
40 - 80
Degree programmes
- Complementary competence, bachelor's studies in English (CCN2), Information and Communication Technologies (ICT)
- Laurea täydentävä osaaminen, amk-tutkinto (TON2), Tietojenkäsittely ja tietoliikenne (ICT)
Teachers
- Paresh Rathod
- Pasi Kämppi
Teacher in charge
Pasi Kämppi
Groups
-
TON221SYLaurea täydentävä osaaminen (amk-tutkinto), S21, Tietojenkäsittely ja tietoliikenne (ICT)
-
CCN221SYComplementary competence (bachelor’s studies), S21, Information and Communication Technologies (ICT)
Learning outcomes
The student is able to
- act ethically as a member of study group and community
- recognize and comprehend the importance of confidentiality,
integrity and availability model for the information and
cybersecurity
- recognize and comprehend different threats, attacks and
vulnerabilities
- comprehend and describe security technologies and tools
- comprehend and describe security architectures and designs
- comprehend and describe identity and access management
approaches
- comprehend, describe and apply risk management principles
- comprehend and describe cryptography and PKI concepts
- differentiate cybersecurity domains and subdomains from each
other
- comprehend and explain the importance of the cybersecurity in
the modern society
- reflect and develop their own learning process
Teaching methods
- This study unit is fully automated self paced online learning (MOOC) with the possibilities of volunteer tutoring meetings with the teachers
- The tutoring meetings are not compulsory. Any student can participate tutoring meeting if they need any help from teachers
- Virtual studies, weekly basis virtual learning and assignments
- This is introduction level study unit and it gives good basis for more advanced study units
- This study unit is suitable for any student who is willing to learn the overview of information security technologies
- Students need to commit weekly based studies
- NOTE-1: There are no scheduled lecturers given by a teacher but the teachers is available for counselling and solving study related problems
- NOTE-2: Student should have finished following compulsory ICT-studies or have equivalent competence: (R0277 The ICT Environment and Infrastructure and R0280 Data Networks and Information Security)
- NOTE-3: Programming and Linux skills are beneficial but not mandatory in Capture the Flag (CTF) exercise
Location and time
- Not dependent on place or time (virtual studies)
- The study unit is implemented in Canvas LMS
Learning materials and recommended literature
- Learning material is based on Comptia Security+ SY0-501 certification training material
- Video material
- Course book (Comptia Security+ 7th Edition, Dulaney Emmett)
- The study unit provides preparatory training for Comptia Security+ but not certification exam
- NOTE: There is no scheduled lecturers given by a teacher but the teachers is available for counselling and solving study related problems
Alternative completion methods of implementation
- If a student has existing domain specific competence he/she can request a process for recognition of existing competence
Co-operation with working life and/or RDI
- The study unit content equals professional Comptia Security+ certification
Important dates
- Study unit starts on week 18 (preliminary plan)
- Study unit ends on week 25 (preliminary plan)
- Detailed schedule is released at the beginning of the study unit
- NOTE: There can be scheduling changes
Students workload
- 5 cr / 137,5 hours
- Study unit will last 14 weeks
Content and scheduling
- Weekly base schedule and one (1) module per week
- A student can be proceed in his/her own pace from Module-1 to Module-5 and from Module-6 to Module-10
- Integrated Capture the Flag (CTF) exercise
Modules:
- Module-0: Learning target and goal
- Module-1: Network Security Part 1
- Module-2: Network Security Part 2
- Module-3: Compliance and Operational Security Part 1
- Module-4: Compliance and Operational Security Part 2
- Module-5: Threats and Vulnerabilities Part 1
- Module-6: Threats and Vulnerabilities Part 2
- Module-7: Threats and Vulnerabilities Part 3
- Module-8: Application, Data, and Host Security
- Module-9: Access Control and Identity
- Module-10: Cryptography
Further information for students
- STUDY UNIT IS FULLY AUTOMATED (MOOC) AND TEACHERS ARE AVAILABLE FOR COUNSELLING PURPOSES
- This is introduction level study unit and it gives good basis for more advanced cybersecurity study units
- This study unit is suitable for any student who is willing to learn the overview of information security technologies
- Students need to commit weekly based studies
- The study unit is prioritized for TIKO and BIT students
- Safety, Security and Risk Management students should take the study unit TO007BN Information and Cybersecurity Management
- NOTE: Inactive students are removed from the study unit after the orientation period (the first week of the study unit)
Grading scale
H-5
Evaluation methods and criteria
- Weekly studies
- Students collect points for different learning activities
- Online Tests
- Learning assignments and tasks
- Possible bonus task
Assessment scale:
100-90 points equals grade 5
89-80 points equals grade 4
79-70 points equals grade 3
69-60 points equals grade 2
59-50 points equals grade 1
49-0 points equals grade 0
Evaluation criteria, satisfactory (1-2)
– use essential professional concepts when explaining various work practices and situations
– search for information in different sources
– report
– work under guidance using the skills and methods learned
– receive guidance
– plan the progress of his/her work and use of time under guidance
– work safely and in accordance with the professional code of conduct
– follow the provided instructions and rules
Evaluation criteria, good (3-4)
– use professional concepts in a consistent manner when explaining various work practices and situations
– gather information and use his/her knowledge basis
– report in the agreed manner
– work using the skills and methods learned
– take part in guidance and utilise it
– plan and manage the progress of his/her work and use of time
– justify this/her actions in accordance with the professional code of conduct
Evaluation criteria, excellent (5)
– use professional concepts extensively
– compare and choose relevant information
– report and communicate in a professional manner
– work independently, using the skills and methods learned
– anticipate his/her need for guidance
– manage his/her time appropriately, completing the agreed tasks at the required quality level
– work responsibly, applying the skills and methods learned
– plan and evaluate their work, taking safety and/or ethical aspects into consideration
Qualifications
Prerequisites:
For tiko students: study units R0240 ICT-toimintaympäristö, R0241 Tiedonhallinta ja tietokannat & R0242 Tietoverkot ja tietoturva
For BIT students: study units R0277 ICT Environment and Infrastructure, R0279 Information Management and Databases & R0280 Data Networks and Information Security
Or equivalent competence.