Course - Introduction to Information Security Management - IIKG6503
IIKG6503 - Introduction to Information Security Management
About
Examination arrangement
Examination arrangement: Aggregate score
Grade: Letter grades
| Evaluation | Weighting | Duration | Grade deviation | Examination aids |
|---|---|---|---|---|
| Assignment/term-paper | 49/100 | |||
| Home examination | 51/100 | 3 hours |
Course content
- Introduction to Information security strategy and policy management
- Cultural, organizational and behavioral theories used in information security management organizations.
- Legal and ethical aspects of information security and privacy management.
- Overview of current information security management standards and practices
- How to develop a security program
- Introduction to assessing and treating risk: Threat and vulnerability modelling
- Management models and management practices
- Contingencies and maintenance of Information security
- Information security planning and incident management
Learning outcome
Knowledge: The candidate possess through knowledge of the fundamental theories, models practices of information security management for both large and small organizations. The candidate possess insight and understanding of ethical and legal aspect information security management and privacy management. The candidate possesses good understanding of the risk management processes. The candidate possesses good understanding of security planning and incident management process. The candidate possess insight and good understand of security awareness and security escalations issues in information security management work. The candidate possess insight of the technological innovation process in IT security and its effect on security management. The candidate possess basic knowledge of the standards in information security management.
Skills: The candidate is capable of analyzing existing theory, models and methods in the field of information security management and work independently on solving theoretical and practical problems. The candidate is capable of applying his/her knowledge to both modeling the potential problems and the solutions in information security management and be able to communicate this problems and solutions using basic theoretical skills. The candidate is capable of using and the basic terminology and is aware of the basic standards used in the area of information security management.
General competence: Can participate in group work and manage different organization roles of information security management.
Learning methods and activities
See Norwegian version
Compulsory assignments
- Multiple choise-test
- Crisis Management Excersise
- Risk Analysis
Further on evaluation
See Norwegian version
Specific conditions
Admission to a programme of study is required:
Technology Management and Digital Transformation (MTDO)
Course materials
See Norwegian version
Credit reductions
| Course code | Reduction | From | To |
|---|---|---|---|
| IMT4115 | 7.5 | AUTUMN 2020 |
No
Version: 1
Credits:
7.5 SP
Study level: Further education, higher degree level
Term no.: 1
Teaching semester: SPRING 2024
Language of instruction: Norwegian
Location: Gjøvik
- Information Security
Department with academic responsibility
Department of Information Security and Communication Technology
Department with administrative responsibility
Pro-Rector for Education
Examination
Examination arrangement: Aggregate score
- Term Status code Evaluation Weighting Examination aids Date Time Examination system Room *
-
Spring
ORD
Home examination
51/100
Release
2024-06-03Submission
2024-06-03
09:00
INSPERA
12:00 -
Room Building Number of candidates - Spring ORD Assignment/term-paper 49/100 INSPERA
-
Room Building Number of candidates
- * The location (room) for a written examination is published 3 days before examination date. If more than one room is listed, you will find your room at Studentweb.
For more information regarding registration for examination and examination procedures, see "Innsida - Exams"