Core Module Information
Module title: Security Audit & Compliance

SCQF level: 11:
SCQF credit value: 20.00
ECTS credit value: 10

Module code: INF11809
Module leader: Peter Cruickshank
School School of Computing, Engineering and the Built Environment
Subject area group: Applied Informatics
Prerequisites

There are no pre-requisites for this module to be added

Description of module content:

The aim of the module is to let you develop a deep understanding of the context that information security operates in, and to give you an opportunity to express this in the form of professional written reports. Topics covered include: • Overview of relevant laws and regulations: national and international, covering Data Protection, computer misuse and other legal issues. • The relation between governance models and frameworks including: ISACA?s COBIT and ISO Standards (ISO27000 in particular) • Role of the professions; difference between audit, forensics and security management. Professional ethics and codes of practice• Risk management, contingency and continuity planning• Understanding and application of the COBIT domains

Learning Outcomes for module:

Upon completion of this module you will be able to

LO1: Demonstrate an understanding of the roles and responsibilities of the professionals involved, including practical application of codes of practice/ethics.

LO2: Review and critically appraise relevant laws and relevant standards, their interrelationships and international trends in their development.

LO3: Critically appraise the principles of information security management systems and the roles of risk management, controls and audit in supporting IS governance.

LO4: Demonstrate an understanding of the role of human and organisational factors in delivering information security.

LO5: Research, examine and evaluate relevant academic literature and real-world situations, identify issues and solutions and make recommendations to management.

Full Details of Teaching and Assessment
2024/5, Trimester 1, Blended,
VIEW FULL DETAILS
Occurrence: 001
Primary mode of delivery: Blended
Location of delivery: WORLDWIDE
Partner:
Member of staff responsible for delivering module: Peter Cruickshank
Module Organiser:


Student Activity (Notional Equivalent Study Hours (NESH))
Mode of activityLearning & Teaching ActivityNESH (Study Hours)NESH Description
Independent Learning Tutorial 10 To enhance the online learning experience, live academic sessions (LAS) are conducted weekly. These sessions comprise of activities and discussion designed to develop your understanding of core theories and concepts, and how these can be applied in practice. These sessions further provide an opportunity to you to discuss core debate with fellow students, ask questions, and receive feedback from tutors.
Online Guided independent study 190 Guided independent study includes a range of activities and tasks designed to help you to develop the in-depth knowledge and core academic skills needed to meet the module learning outcomes. Details of independent study tasks, including core readings, are provided on Moodle.
Total Study Hours200
Expected Total Study Hours for Module200


Assessment
Type of Assessment Weighting % LOs covered Week due Length in Hours/Words Description
Class Test 10 1~2~3~4~5 Week 13 HOURS= 1 An online multiple choice test at the end of each of the 10 units to ensure coverage of the module contents
Report 10 1~2~3~4~5 Week 8 , WORDS= 500 words Planning notes for main submission, demonstrating your evaluation of an outline created using generative AI.
Essay 80 1~2~3~4~5 Week 13 , WORDS= 2500 A white-paper style report demonstrating your knowledge of industry and current academic research on a selected topic.
Component 1 subtotal: 10
Component 2 subtotal: 90
Module subtotal: 100

Indicative References and Reading List - URL:
Security Audit & Compliance