Information and Cyber Security (5 cr)
Code: HT00BN81-3020
General information
- Enrollment
-
25.11.2024 - 10.01.2025
Registration for the implementation has ended.
- Timing
-
10.01.2025 - 04.06.2025
Implementation is running.
- Number of ECTS credits allocated
- 5 cr
- Local portion
- 3 cr
- Virtual proportion
- 2 cr
- Mode of delivery
- Blended learning
- Unit
- 10 Liiketalous-, tietojenkäsittely- ja palvelualat
- Campus
- Laurea Leppävaara
- Teaching languages
- English
- Seats
- 20 - 40
- Degree programmes
- Degree Programme in Safety, Security and Risk Management (HRA), Laurea Leppävaara
- Teachers
- Kaci Bourdache
- Vilma Medici
- Veli Sulkava
- Teacher in charge
- Vilma Medici
- Scheduling groups
- Avoin AMK (Size: 5 . Open UAS : 5.)
- Groups
-
HRA224SADegree Programme in Safety, Security and Risk Management, blended learning, S24, Leppävaara
- Small groups
- Avoin AMK
- Study unit
- HT00BN81
Learning outcomes
The student is able to:
- define information and cyber security principles
- define fundamental information and cyber security compliance requirements, best practices and apply those
- assess and manage information and cyber security risks
- create information and cyber security procedures and guidelines
Materials
The teaching is primarily based on the ISO 27000 series of standards. As a student at Laurea, you can familiarize yourself with them at https://libguides.laurea.fi/security/standards. Other materials will be shared on Canvas.
Additionally, the course material includes the book: Mikko Hyppönen's "If It's Smart, It's Vulnerable." The book is also available in Finnish under the title "Internet."
Teaching methods
This implementation is designed for blended learning. The course includes scheduled face-to-face sessions (beginning and end) as well as independent online learning. Guidance for course assignments is provided remotely via Zoom. The course involves both individual and group work. The implementation of the course is supported by the learning environment built in Canvas, where course materials, assignments, and important dates are gathered. It is crucial for learning to participate in face-to-face sessions held on campus according to the schedule. Feedback on assignments will be given by the teacher, either to groups or individuals.
NOTE:
- This study unit is preferably offered for students of Safety, Security and Risk Management as compulsory studies (HRA groups) and other students are eligible to be enrolled in case of free seats
- If you are not security management student, please review study unit Introduction for Information Security of IT degree
Employer connections
Some of the assignments can be implemented in collaboration with the working life.
Exam schedules
According to the degree regulations (section 18) “students must be present in the first contact session or notify their teacher in charge if they cannot attend. If they fail to notify the teacher of their absence in the first contact session, their enrollment will be rejected. Another student in the queue may be enrolled in the study unit in the place of the absent student.” (Laurea degree regulations) In the case of online studies the lecturer can also specify some other way than participation on an online meeting what is required from the student so that he/she verifies his/her attendance on the study unit (Decision by the vice president, education 7/2019).
The course workspace will be published in Canvas by January 10, 2025.
The course begins on January 16, 2025. The opening lecture and the closing lecture (May 14, 2025) will be held in face-to-face sessions and will not be recorded. The other three lectures can be viewed independently by the students. Important dates for the implementation are available to students on Canvas.
Assignment submission deadlines will be announced on Canvas at the beginning of the course. The exam will take place on May 25, 2025. If a student is unable to attend the exam or receives a fail grade, they have the opportunity to participate in a retake exam (a total of three opportunities).
International connections
The study unit is suitable for exchange students.
Completion alternatives
All students are entitled to demonstrate their competence. The recognition and accreditation of prior competence is initiated by the students themselves. The competence is recognized and accredited by the teacher responsible for the studies or another person designated to the position. The assessment is carried out according to the same assessment criteria and, as a rule, same grading scale as that adopted for the corresponding study unit or module. The student is entitled to apply for accreditation of prior competence regardless of where, how and when the competence has been acquired. The student may also seek accreditation of competence to be acquired on the job as part of their degree (work-based learning). ... The student is responsible for demonstrating and verifying their competence and for providing sufficient information.
For more information, please refer to the student intranet: https://laureauas.sharepoint.com/sites/studentEn_planningstudies/SitePages/Recognition-of-Prior-Learning.aspx
Students can also apply for the recognition of competence acquired through work as part of their degree (work-based learning). Students are responsible for demonstrating competence, providing evidence, and submitting sufficient information. The competence is assessed jointly by the student and the supervisor receiving the demonstration. For more information, please refer to the student intranet: https://laureauas.sharepoint.com/sites/studentEn_planningstudies/SitePages/Work-based-learning.aspx
Student workload
The scope of the course is 5 ECTS credits, which corresponds to 135 hours of student work. This time includes face-to-face sessions, guidance, assignments, and independent study of the materials.
Content scheduling
The course covers the basics of information and cyber security. The focus is on topics that security professionals should at least be aware of regarding information and cyber security. Completing the course does not require in-depth technical expertise or knowledge of the subject. The framework for the course is the ISO 27000 series of standards. The course is divided into five modules:
- Fundamentals
- Organizational control measures
- Personnel-related control measures
- Physical control measures
- Technological control measures.
Evaluation scale
H-5
Qualifications
Before enrolling to this study unit, you should have adequate competence level of safety, security and risk management, which you can acquire for example by completing study unit Business Continuity 5 credits or Basics of Corporate Safety, Security and Risk Management 10 credits
Further information
The study unit corresponds to the requirements of Bachelor's level education.
Those enrolling in the course should have sufficient knowledge of the fundamentals of security and risk management, which can be obtained, for example, by completing the course Business Continuity 5 ECTS credits or Basics of Corporate Security and Risk Management 10 ECTS credits.
There are 5 spots available for open university of applied sciences students on the course. The course is also suitable for exchange students.
The quality of the study unit implementation has been assessed and the self-evaluation report is available in Canvas.