Abstract
This subject helps prepare students for the Certified Information Security Manager Certification (CISM), which is an international industry certification developed by ISACA. Students in this subject will investigate how to establish and maintain an information security governance framework along with the supporting processes to ensure that an organisation's information security … For more content click the Read More button below.
Syllabus
Information security governanceInformation security strategySecurity requirementsRisk management and complianceSecurity policiesAsset classification modelsProgram development and managementSecurity incident management
Learning outcomes
Upon successful completion of this subject, students should:
1.
be able to create and maintain an information security strategy that aligns with organisational goals and objectives;
2.
be able to establish, monitor and report on a set of security metrics that are appropriate to an organisation's business mission;
3.
be able to formulate a framework to enable an organisation to classify its information assets;
4.
be able to analyse and evaluate appropriate risk treatment options as part of a risk management program;
5.
be able to identify, define and manage requirements for internal and external resources to execute the information security program; and
6.
be able to create and maintain an incident response plan to ensure an effective and timely response to information security incidents.
Enrolment restrictions
Only available to students enrolled in IT Masters relevant courses