There are no pre-requisites for this module to be added

The aim of the module is to let you develop a deep understanding of the framework that information security operates in, and to give you an opportunity to express this in the form of professional written reports. Topics covered include: • The relation between governance models and frameworks including: ISACA’s COBIT and ISO Standards (ISO27000 in particular) • Overview of relevant laws and regulations: national and international, covering privacy, computer misuse and other legal issues. • The role of organisation and human factors in ensuring a secure environment• The role of the professions; difference between audit, forensics and security management. Professional ethics and codes of practice• Information security risk management and controls including, contingency and continuity planning

Upon completion of this module you will be able to

LO1: Demonstrate an understanding of the roles and responsibilities of the professionals involved, including practical application of codes of practice/ethics.

LO2: Critically appraise relevant issues, laws and standards relevant to information security

LO3: Critically appraise the principles of information security management systems and the roles of risk management, controls and audit in supporting IS governance.

LO4: Research, examine and evaluate relevant academic literature and and apply it to real-world situations

LO5: Demonstrate an ability to identify issues and solutions and professionally present findings in a way that is appropriate for the intended audience.