Tieto- ja kyberturvallisuus (5 op)

Tavoitteet

Opiskelija osaa:
- määrittää tieto- ja kyberturvallisuuden keskeiset periaatteet
- määrittää tieto- ja kyberturvallisuudelle asetettujen vaatimusten perusteet, parhaat käytännöt sekä soveltaa niitä
- arvioida ja hallita tieto- ja kyberturvallisuusriskejä
- luoda tieto- ja kyberturvallisuuteen liittyvät menettelyt ja ohjeet

Oppimateriaali ja suositeltava kirjallisuus

The teaching is primarily based on the ISO 27000 series of standards. As a student at Laurea, you can familiarize yourself with them at https://libguides.laurea.fi/security/standards. Other materials will be shared on Canvas.

Additionally, the course material includes the book: Mikko Hyppönen's "If It's Smart, It's Vulnerable." The book is also available in Finnish under the title "Internet."

Toteutustapa

This implementation is designed for blended learning. The course includes scheduled face-to-face sessions (beginning and end) as well as independent online learning. Guidance for course assignments is provided remotely via Zoom. The course involves both individual and group work. The implementation of the course is supported by the learning environment built in Canvas, where course materials, assignments, and important dates are gathered. It is crucial for learning to participate in face-to-face sessions held on campus according to the schedule. Feedback on assignments will be given by the teacher, either to groups or individuals.

NOTE:
- This study unit is preferably offered for students of Safety, Security and Risk Management as compulsory studies (HRA groups) and other students are eligible to be enrolled in case of free seats
- If you are not security management student, please review study unit Introduction for Information Security of IT degree

Työelämäyhteistyö ja/tai TKI

Some of the assignments can be implemented in collaboration with the working life.

Toteutuksen tärkeät päivämäärät

According to the degree regulations (section 18) “students must be present in the first contact session or notify their teacher in charge if they cannot attend. If they fail to notify the teacher of their absence in the first contact session, their enrollment will be rejected. Another student in the queue may be enrolled in the study unit in the place of the absent student.” (Laurea degree regulations) In the case of online studies the lecturer can also specify some other way than participation on an online meeting what is required from the student so that he/she verifies his/her attendance on the study unit (Decision by the vice president, education 7/2019).

The course workspace will be published in Canvas by January 10, 2025.

The course begins on January 16, 2025. The opening lecture and the closing lecture (May 14, 2025) will be held in face-to-face sessions and will not be recorded. The other three lectures can be viewed independently by the students. Important dates for the implementation are available to students on Canvas.

Assignment submission deadlines will be announced on Canvas at the beginning of the course. The exam will take place on May 25, 2025. If a student is unable to attend the exam or receives a fail grade, they have the opportunity to participate in a retake exam (a total of three opportunities).

Kansainvälisyys toteutuksella

The study unit is suitable for exchange students.

Toteutuksen valinnaiset suoritustavat

All students are entitled to demonstrate their competence. The recognition and accreditation of prior competence is initiated by the students themselves. The competence is recognized and accredited by the teacher responsible for the studies or another person designated to the position. The assessment is carried out according to the same assessment criteria and, as a rule, same grading scale as that adopted for the corresponding study unit or module. The student is entitled to apply for accreditation of prior competence regardless of where, how and when the competence has been acquired. The student may also seek accreditation of competence to be acquired on the job as part of their degree (work-based learning). The student is responsible for demonstrating and verifying their competence and for providing sufficient information.

For more information, please refer to the student intranet: https://laureauas.sharepoint.com/sites/studentEn_planningstudies/SitePages/Recognition-of-Prior-Learning.aspx

Students can also apply for the recognition of competence acquired through work as part of their degree (work-based learning). Students are responsible for demonstrating competence, providing evidence, and submitting sufficient information. The competence is assessed jointly by the student and the supervisor receiving the demonstration. For more information, please refer to the student intranet: https://laureauas.sharepoint.com/sites/studentEn_planningstudies/SitePages/Work-based-learning.aspx

Opiskelijan ajankäyttö ja kuormitus

The scope of the course is 5 ECTS credits, which corresponds to 135 hours of student work. This time includes face-to-face sessions, guidance, assignments, and independent study of the materials.

Sisältö ja sen jaksotus

The course covers the basics of information and cyber security. The focus is on topics that security professionals should at least be aware of regarding information and cyber security. Completing the course does not require in-depth technical expertise or knowledge of the subject. The framework for the course is the ISO 27000 series of standards. The course is divided into five modules:
- Fundamentals
- Organizational control measures
- Personnel-related control measures
- Physical control measures
- Technological control measures.

Arviointiasteikko

H-5

Esitietovaatimukset

Opintojaksolle ilmoittautuvilla tulee olla turvallisuus- ja riskienhallintaalan perusteiden riittävä osaaminen, jonka voi hankkia esimerkiksi suorittamalla opintojakson Business Continuity 5 op tai Yritysturvallisuuden ja riskienhallinnan perusteet 10 op.

Lisätiedot

The study unit corresponds to the requirements of Bachelor's level education.

Those enrolling in the course should have sufficient knowledge of the fundamentals of security and risk management, which can be obtained, for example, by completing the course Business Continuity 5 ECTS credits or Basics of Corporate Security and Risk Management 10 ECTS credits.

There are 5 spots available for open university of applied sciences students on the course. The course is also suitable for exchange students.

The quality of the study unit implementation has been assessed and the self-evaluation report is available in Canvas.