N/A

The aim of the module is to let you develop a deep understanding of the context that information security operates in, and to give you an opportunity to carry out your own research and the present findings professionally.

Topics covered include:
• The role of laws and regulations: national and international, covering Data Protection, computer misuse and other legal issues.
• The relation between governance models and frameworks including: ISACA’s COBIT and ISO Standards (ISO27000 in particular)
• The role of the professionals, security culture and ethical environments
• Management of risks and controls
• Availability and continuity planning

LO1: Demonstrate an understanding of the roles and responsibilities of the professionals involved, including practical application of codes of practice/ethics.
LO2: Review and critically appraise relevant laws and relevant standards, their interrelationships and international trends in their development.
LO3: Critically appraise the roles of risk management, controls and audit in supporting governance of information systems
LO4: Research, examine and evaluate relevant academic literature and real-world situations, identify issues and solutions
LO5: Demonstrate an ability to professionally present findings in a way that is appropriate for the intended audience