Course overview
This course is designed to equip students with the skills to critically analyse, reflect on and synthesise enterprise security requirements and techniques within a complex corporate information technology environment. Building upon fundamental knowledge of information technology systems, the course delves into fundamentals and frameworks of risk management, threat, vulnerability and risk assessment and analysis methodologies, understanding the human aspects to risk assessment, dealing with uncertainty, mitigation strategies, and compliance with security policies and standards. Through real-world examples, students will consolidate the theory practice by developing analytical skills to assess risks and select effective management measures, enhancing their ability to think critically and solve complex problems in high-stakes situations.
Course learning outcomes
- Apply risk assessment methodologies in information systems and cyber contexts incorporating knowledge on technical IT foundations
- Develop comprehensive risk mitigation strategies that align with enterprise security requirements
- Demonstrate collaboration and communication skills in the analysis of organisational risk management practices
- Design information technology policies and procedures to improve capabilities