| Semester 2, 2020 Online | |
| Short Description: | Mgt of Information Security |
| Units : | 1 |
| Faculty or Section : | Faculty of Business, Education, Law and Arts |
| School or Department : | School of Management and Enterprise |
| Student contribution band : | Band 2 |
| ASCED code : | 020300 - Information Systems |
| Grading basis : | Graded |
Staffing
Examiner:
Requisites
Co-requisite: CIS5100
Other requisites
Students are required to have access to a personal computer, e-mail capabilities and Internet access to UConnect. Current details of computer requirements can be found at .
Rationale
Information Communications and Technology professionals need to develop a good understanding of the importance of information security for organisations and society. Students must have a good working knowledge of the role of information security in providing an appropriate level of confidentiality, integrity and availability while considering the legal, privacy and ethical implications. Students need to develop the knowledge and skills using a range of security technologies and tools to identify potential threats and vulnerabilities that may exist in business systems and networks and manage security architecture and design andthe associated risks and legal, privacy and ethical issues that may rise. This course provides students with an intermediate knowledge of the key principles necessary for managing the security of business information systems and networks.
Synopsis
Students study contemporary information security theory and practice in the context of threats, attacks and vulnerabilities that may exist in business systems and networks and the controls that can be put in place to ensure that the risks are managed at an acceptable level. Students will develop their skills and knowledge so that they can evaluate information security situations. They will be able to identify specific threats, attacks, vulnerabilities and manage security architecture and design and legal, privacy or ethical issues that may arise. They will be able to clearly communicate and propose recommendations to manage the risks identified. Students will be assessed on their understanding of key concepts of information security and their ability to apply and communicate effectively contemporary information security theory and practice to real world problems.
Objectives
On successful completion of this course students should be able to:
- analyse information security vulnerabilities, attacks and threats and determine appropriate security architecture, design and controls that can be applied to mitigate the potential risks;
- describe the role of disaster recovery and business continuity plans in recovering information and operational systems when systems and hardware fail;
- describe why legal privacy and ethical issues play an important part in effectively managing information security;
- communicate effectively both written and orally about the management of information security in organisations.
Topics
| Description | Weighting(%) | |
|---|---|---|
| 1. | Threats, Attacks and Vulnerabilities | 21.00 |
| 2. | Security Technologies and Tools | 18.00 |
| 3. | Security Architecture and Design | 21.00 |
| 4. | Identity and Access Management | 16.00 |
| 5. | Risk management | 13.00 |
| 6. | Cryptography and Public Key Infrastructure | 11.00 |
Text and materials required to be purchased or accessed
ALL textbooks and materials available to be purchased can be sourced from (unless otherwise stated). (https://omnia.usq.edu.au/textbooks/?year=2020&sem=02&subject1=CIS5205)
Please for alternative purchase options from USQ Bookshop. (https://omnia.usq.edu.au/info/contact/)
(includes CD.)
Reference materials
Student workload expectations
| Activity | Hours |
|---|---|
| Directed 精东传媒app | 65.00 |
| Independent 精东传媒app | 100.00 |
Assessment details
| Description | Marks out of | Wtg (%) | Due Date | Notes |
|---|---|---|---|---|
| ASST 1 (WRITTEN REPORT) | 100 | 20 | 24 Aug 2020 | |
| ASST 2 (CASE STUDY) | 100 | 40 | 12 Oct 2020 | |
| ASST 3 (FINAL ASSIGNMENT) | 100 | 40 | 02 Nov 2020 | (see note 1) |
Notes
- Students will be provided further instruction regarding the assignment by their examiner via 精东传媒appDesk.
Important assessment information
-
Attendance requirements:
Online: There are no attendance requirements for this course. However, it is the students' responsibility to study all material provided to them or required to be accessed by them to maximise their chance of meeting the objectives of the course and to be informed of course-related activities and administration.
On-campus: It is the students' responsibility to attend and participate appropriately in all activities (such as lectures, tutorials, laboratories and practical work) scheduled for them, and to study all material provided to them or required to be accessed by them to maximise their chance of meeting the objectives of the course and to be informed of course-related activities and administration. -
Requirements for students to complete each assessment item satisfactorily:
Due to COVID-19 the requirements for S2 2020 are:
To satisfactorily complete an individual assessment item a student must achieve at least 50% of the marks for that item.
Requirements after S2, 2020:
To satisfactorily complete an individual assessment item a student must achieve at least 50% of the marks. (Depending upon the requirements in Statement 4 below, students may not have to satisfactorily complete each assessment item to receive a passing grade in this course.) -
Penalties for late submission of required work:
Students should refer to the Assessment Procedure (point 4.2.4) -
Requirements for student to be awarded a passing grade in the course:
Due to COVID-19 the requirements for S2 2020 are:
To be assured of receiving a passing grade a student must achieve at least 50% of the total weighted marks available for the course.
Requirements after S2, 2020:
To be assured of receiving a passing grade a student must achieve at least 50% of the total weighted marks available for the course. -
Method used to combine assessment results to attain final grade:
The final grades for students will be assigned on the basis of the aggregate of the weighted marks obtained for each of the summative assessment items in the course. -
Examination information:
Due to COVID-19 the requirements for S2 2020 are:
There is no examination in this course.
Requirements after S2, 2020:
This is a closed examination. Candidates are allowed to bring only writing and drawing instruments into a closed examination. -
Examination period when Deferred/Supplementary examinations will be held:
Due to COVID-19 the requirements for S2 2020 are:
There is no examination in this course, there will be no deferred or supplementary examinations.
Requirements after S2, 2020:
Any Deferred or Supplementary examinations for this course will be held during the next examination period. -
精东传媒app Student Policies:
Students should read the USQ policies: Definitions, Assessment and Student Academic Misconduct to avoid actions which might contravene 精东传媒app policies and practices. These policies can be found at .
Assessment notes
-
Referencing in assignments:
Harvard (AGPS) is the referencing system required in this course. Students should use Harvard (AGPS) style in their assignments to format details of the information sources they have cited in their work. The Harvard (AGPS) style to be used is defined by the USQ Library's referencing guide at .