IMT4115 - Introduction to Information Security Management


Examination arrangement

Examination arrangement: Written exam and Project work
Grade: Letters

Evaluation form Weighting Duration Examination aids Grade deviation
Assignment 49/100
Written examination 51/100 2 hours E

Course content

-Introduction to System Thinking and Scientific Management
-Cultural, Organization and Behavior theories  used information security management  organization.
-Legal and Ethical Aspects of Information and Privacy Management.
-Overview of current information security management standards and practices
-Basic Micro and Macro Theory of Information Security
-Introduction to Risk, Threat and vulnerability Modeling
-Information Security Management and Security Awareness education and training
-Overview of Security Planning and Incident Management

Learning outcome

-The candidate possess through knowledge of the fundamental theories , models practices of  information security management for both large and small organization. 
-The candidate possess insight and understanding  of  ethical and legal aspect information security management and privacy management
-The candidate possesses good understanding of the risk management processes
-The candidate possesses good understanding of  security planning and incident management process
-The candidate possess insight and good understand of security awareness and security escalations issues in information security management work
-The candidate possess insight and good understand of both macro and micro economics issues in information security management.
-The candidate possess insight of the technological innovation process in IT security and its effect on security management.
-The candidate possess basic knowledge of the standards  in information security management

-The candidate is capable of analyzing existing theory , models and methods in the field of information security management and work independently on solving theatrical and practical problems.
-The candidate is capable of applying his/her knowledge to both modeling  the potential problems and the solutions in information security management and be able to communicate this problems and solutions using basic rhetorical skills.
-The candidate is capable of using and the basic terminology and is aware of the basic standards used in the area.

General competence:
-Can participate in group work and manage different organization roles of information security management.

Learning methods and activities

-Group work
-Project work

The course will be made accessible for both campus and remote students. Every student is free to choose the pedagogic arrangement form that is best fitted for her/his own requirement. The lectures in the course will be given on campus and are open for both categories of students. All the lectures will also be available on Internet through NTNU learning management system.

Each group must:
- present and get approval on their mini case work s/case.
- get group concept approval of the termpapaer
- deliver an individual commented PPT

Further on evaluation

-Ordinary re-sit examination for the written exam in August.
-A new, written assignment must also be completed for failed project report.

Forms of assessment:
-Project reports (49%)
-2-hours written individual exam (51%).
-Each part must be passed to pass the course.

Specific conditions

Admission to a programme of study is required:
Information Security (MIS)

Required previous knowledge

Being accepted for the MIS programme: master entry level

Course materials

Management of Information Security newest (5th) Edition
by Michael E. Whitman (Author), Herbert J. Mattord (Author)
ISBN for 2016: ISBN-13: 978-1305501256 / ISBN-10: 130550125X
Professors given content / Blackboard

Credit reductions

Course code Reduction From To
IMT4571 2.5 2017-09-01


Detailed timetable


Examination arrangement: Written exam and Project work

Term Statuskode Evaluation form Weighting Examination aids Date Time Room *
Autumn ORD Assignment 49/100
Autumn ORD Written examination 51/100 E 2017-12-13 13:00 KJL24 , A-atriet-2/3 (A-160) , C024 - underetg. , Folkeuniversitetet Vestlandet
Summer UTS Written examination 51/100 E
  • * The location (room) for a written examination is published 3 days before examination date.
If more than one room is listed, you will find your room at Studentweb.