Information Assurance and Risk Management

Undergraduate | 2026

Course page banner
area/catalogue icon
Area/Catalogue
INFO 2003
Course ID icon
Course ID
200125
Level of study
Level of study
Undergraduate
Unit value icon
Unit value
6
Course level icon
Course level
2
Study abroad and student exchange icon
Inbound study abroad and exchange
Inbound study abroad and exchange
The fee you pay will depend on the number and type of courses you study.
Yes
University-wide elective icon
University-wide elective course
Yes
Single course enrollment
Single course enrolment
Yes
alt
Note:
Course data is interim and subject to change

Course overview

The course aims to enable students to define and implement the architecture, design, management and controls that assure the security of business environments. The topics include recognition, analysis and assessments of risks, threats, and vulnerabilities, and measures to mitigate them, including implementing a control for a policy using frameworks such as ISO, NIST, ITIL, and CIS. Students will develop a comprehensive understanding of various frameworks, methodologies, and best practices related to information security, enabling them to assess risks, threats, and vulnerabilities effectively and implement appropriate measures to mitigate them.

Course learning outcomes

  • Describe the fundamental concepts and principles of information assurance and management
  • Identify, assess, and prioritise risks, threats, and vulnerabilities within business environments
  • Evaluate different frameworks and standards such as ISO, NIST, ITIL, CIS, etc., and understand their relevance in ensuring information security
  • Design, implement, and manage controls, using policy and procedures to safeguard information assets and mitigate security risks effectively

Prerequisite(s)

Corequisite(s)

N/A

Antirequisite(s)

N/A