Course - Introduction to Information Security Management - IIKG6503
Introduction to Information Security Management
Assessments and mandatory activities may be changed until September 20th.
About
About the course
Course content
- Introduction to Information security strategy and policy management
- Cultural, organizational and behavioral theories used in information security management organizations.
- Legal and ethical aspects of information security and privacy management.
- Overview of current information security management standards and practices
- How to develop a security program
- Introduction to assessing and treating risk: Threat and vulnerability modelling
- Management models and management practices
- Contingencies and maintenance of Information security
- Information security emergency preparedness planning and incident management
Learning outcome
Knowledge:
The candidate possesses through knowledge of the fundamental theories models practice information security management for both large and small organizations.
The candidate possesses insight and understanding of ethical and legal aspects within information security management and privacy management.
The candidate possesses a good understanding of the risk management processes.
The candidate possesses a good understanding of security planning and incident management process.
The candidate possesses insight and good understanding of security awareness and security escalations issues in information security management work.
The candidate possesses insight into the technological innovation process in IT security and its effect on security management.
The candidate possesses basic knowledge of the standards in information security management.
Skills:
The candidate is capable to analyze existing theory, models and methods in the field of information security management and work independently on solving theoretical and practical problems.
The candidate is capable to apply his/her knowledge to both modeling the potential problems and the solutions in information security management and be able to communicate these problems and solutions using basic theoretical skills.
The candidate is capable to use basic terminology and is aware of the basic standards used in the field of information security management.
General competence: Can participate in group work and manage different organization roles of information security management.
Learning methods and activities
See Norwegian version
Compulsory assignments
- Multiple choise-test
- Crisis Management Excersise
- Risk Analysis
Further on evaluation
See Norwegian version
Specific conditions
Admission to a programme of study is required:
- (IEIIKEVUH)
Technology Management and Digital Transformation (MTDO)
Required previous knowledge
See Norw. version
Course materials
See Norwegian version
Credit reductions
| Course code | Reduction | From |
|---|---|---|
| IMT4115 | 7.5 sp | Autumn 2020 |
Subject areas
- Information Security
Contact information
Lecturers
Department with academic responsibility
Department of Information Security and Communication Technology