course-details-portlet

IIKG6503

Introduction to Information Security Management

Assessments and mandatory activities may be changed until September 20th.

Credits 7.5
Level Further education, higher degree level
Course start Spring 2026
Duration 1 semester
Language of instruction Norwegian
Location Gjøvik
Examination arrangement Aggregate score

About

About the course

Course content

  • Introduction to Information security strategy and policy management
  • Cultural, organizational and behavioral theories used in information security management organizations.
  • Legal and ethical aspects of information security and privacy management.
  • Overview of current information security management standards and practices
  • How to develop a security program
  • Introduction to assessing and treating risk: Threat and vulnerability modelling
  • Management models and management practices
  • Contingencies and maintenance of Information security
  • Information security planning and incident management

Learning outcome

Knowledge:

The candidate possess through knowledge of the fundamental theories, models practices of information security management for both large and small organizations. The candidate possess insight and understanding of ethical and legal aspect information security management and privacy management. The candidate possesses good understanding of the risk management processes. The candidate possesses good understanding of security planning and incident management process. The candidate possess insight and good understand of security awareness and security escalations issues in information security management work. The candidate possess insight of the technological innovation process in IT security and its effect on security management. The candidate possess basic knowledge of the standards in information security management.

Skills:

The candidate is capable of analyzing existing theory, models and methods in the field of information security management and work independently on solving theoretical and practical problems. The candidate is capable of applying his/her knowledge to both modeling the potential problems and the solutions in information security management and be able to communicate this problems and solutions using basic theoretical skills. The candidate is capable of using and the basic terminology and is aware of the basic standards used in the area of information security management.

General competence: Can participate in group work and manage different organization roles of information security management.

Learning methods and activities

See Norwegian version

Compulsory assignments

  • Multiple choise-test
  • Crisis Management Excersise
  • Risk Analysis

Further on evaluation

See Norwegian version

Specific conditions

Admission to a programme of study is required:
- (IEIIKEVUH)
Technology Management and Digital Transformation (MTDO)

Required previous knowledge

See Norw. version

Course materials

See Norwegian version

Credit reductions

Course code Reduction From
IMT4115 7.5 sp Autumn 2020
This course has academic overlap with the course in the table above. If you take overlapping courses, you will receive a credit reduction in the course where you have the lowest grade. If the grades are the same, the reduction will be applied to the course completed most recently.

Subject areas

  • Information Security

Contact information

Lecturers

Department with academic responsibility

Department of Information Security and Communication Technology

Department with administrative responsibility

Section for quality in education and learning environment

Examination

Examination

Examination arrangement: Aggregate score
Grade: Letter grades

Ordinary examination - Spring 2026

Home examination
Weighting 51/100 Duration 3 hours Exam system Inspera Assessment
Assignment/term-paper
Weighting 49/100 Exam system Inspera Assessment