course-details-portlet

ID302809

Information security

Credits 10
Level Third-year courses, level III
Course start Autumn 2018
Duration 1 semester
Language of instruction English and norwegian
Location Ålesund
Examination arrangement Portfolio assessment

About

About the course

Course content

The foundation for information security
- terminology
- integrity, confidentiality and availability

Techological considerations regarding information security
- Storage and use of digital information
- Firewalls, backdoors, viruses, security breaches in applications
- Security requirements to the systems
- Risk management
- Single point of failure, backup, physical safety measure
- Problems addressing wireless
- Cryptography and sertificates 

Organizational problems regarding information security
- Identify the human factor
- Managements responsibilities for information security
- Risk management and information assets management
- Increase knowlegde regarding information security
- The conflict between security and user friendly systems

Importance of anchoring security work in the entire organization
- Standards, laws and regulations

Learning outcome

Knowledge:
- understand the meaning of information security
- know and understand the key concepts within the area
- have a good understanding of the value of information and information systems in organizations
- know current threats to information security
- have a good knowlede og the laws and regulations of the area
- be familiar with recognized methods and standards for improved information security
- have knowledge of relevant technical and organizational means to improve information security

Skills:
- do a risk analysis for an hypotetical organization (case)
- recommend appropriate and effective measures to improve information security
- prepare a contingency plan for a hypotetical business (case)
- establish adequate security in restricted operating environment (lab)

Competence:
- be able to update their knowledge about information security
- communicate their knowledge of information security also to persons without ICT background
- be able to communicate on the subject with an organization's stratecic management

Learning methods and activities

Pedagogiske metoder:
Lectures, casestudies and assignments 

Obligatoriske arbeidskrav:
All mandatory casestudies/assignments and the termpaper are to be delivered in time to get an assessment.

Compulsory assignments

  • Obligatorisk arbeidskrav

Further on evaluation

Portfolio assessment. The portfolio consist of a predefined number of case studies/assignments and a term paper/project. The assessment is an overall evaluation of the portfolio. Candidates may be called to an additional oral examination.

Specific conditions

Admission to a programme of study is required:
Engineering - Computer Science (004DA)

Subject areas

Contact information

Course coordinator

Lecturers

Department with academic responsibility

Department of ICT and Natural Sciences

Examination

Examination

Examination arrangement: Portfolio assessment
Grade:

Ordinary examination - Autumn 2018

Mappevurdering
Weighting 100/100 Examination aids Code A Date Release 2018-12-03
Submission 2018-12-05 Exam system Inspera Assessment

Re-sit examination - Spring 2019

Mappevurdering
Weighting 100/100 Examination aids Code A

All about examinations at NTNU