ÐÂÏã¸ÛÁùºÏ²Ê¿ª½±½á¹û

XClose

ÐÂÏã¸ÛÁùºÏ²Ê¿ª½±½á¹ûModule Catalogue

Menu

Information Security Management (COMP0059)

Key information

Faculty
Faculty of Engineering Sciences
Teaching department
Computer Science
Credit value
15
Restrictions
Module delivery for PGT (FHEQ Level 7) available on MSc Information Security; MSc Crime and Forensic Science; MSc Crime Science with Cybercrime.
Timetable

Alternative credit options

There are no alternative credit options available for this module.

Description

Aims:

The module will provide the student with an understanding of the principles of information security management that are commonly used in business. It will introduce the student to commonly used frameworks and methods and explore critically the suitability and appropriateness of these for addressing today's organisational security needs.

Intended learning outcomes:

On successful completion of the module, a student will be able to:

  1. Understand the key themes and principles of information security management and be able to apply these principles in designing solutions to managing security risks effectively.
  2. Understand how to apply the principles of information security management in a variety of contexts.
  3. AppreciateÌýthe interrelationship between the various elements of information security management and its role in protecting organisations.

Indicative content:

The following are indicative of the topics the module will typically cover:

The module covers the principles of applied information security management and is suitable for those who are looking for an in-depth understanding of security management in medium to large organisations.

The module comprises the following topics:

  • Governance and security policy.
  • Threat and vulnerability management.
  • Incident management.
  • Risk management.
  • Information leakage.
  • Crisis management and business continuity.
  • Legal and compliance.
  • Security awareness and security implementation considerations.

Under these broad headings, the following areas covered:

  • ISO 27000 series and the Plan-Do-Check-Act model.
  • Assessment of threats and vulnerabilities.
  • Incident response.
  • Forensics and investigations.
  • Risk assessment and risk management frameworks.
  • Dealing with classified/ sensitive data.
  • Contingency planning.
  • Legal and regulatory drivers and issues.
  • Certification.
  • Common criteria.
  • Security awareness.
  • Education and training.
  • Practical considerations when implementing the frameworks to address current and future threats.

Requisites:

To be eligible to select this module as optional or elective, a student must: (1) be registered on a programme and year of study for which it is a formally available; and (2) have a basic understanding of IT (whereas prior security knowledge is preferable.)

Technical skills are not a requirement, but the module will cover concepts that may be considered ‘technical’ by students with no prior knowledge of IT or security.

Module deliveries for 2024/25 academic year

Intended teaching term: Term 2 ÌýÌýÌý Postgraduate (FHEQ Level 7)

Teaching and assessment

Mode of study
In person
Methods of assessment
100% Coursework
Mark scheme
Numeric Marks

Other information

Number of students on module in previous year
31
Module leader
Mr Michael Sofowora
Who to contact for more information
cs.pgt-students@ucl.ac.uk

Last updated

This module description was last updated on 8th April 2024.

Ìý

Useful links

Sustainability

For a list of modules related to climate change as well as social and environmental sustainability at UCL, type 'climate' or 'sustainability' into the search. Visit Sustainable UCL for information on extra-curricular activity on sustainability.

Important information

The catalogue has been updated with key information about the modules that will run during the 2024/25 academic session. Current and prospective students can browse through the catalogue to consider possible module choices for the coming year.

Please note,Ìýinformation in the catalogue isÌýsubject to change as teaching and assessment arrangements for 2024/25 may need to be adjusted in line with the University's Feedback and Assessment principles and operating model.

Centrally managed exam durations will be provided on students' individual exam timetables. Arrangements for locally managed exams and in-class activity will be confirmed by the teaching department for the module.

Ìý

Ìý