Information Security and Risk Management module (RM50045)

You will explore current information security frameworks and information risk. You will learn how they are fundamental processes that support good information management in organisations. 

You will be introduced to the main standards, concepts and techniques in risk assessment and reduction. This will also cover information security controls. 

You will learn to support your organisation in creating a secure environment for their information assets. You will also understand the contributions these subjects make to strategic planning activities. 

You will develop a wealth of techniques and practical approaches to improving your organisation's information risk and security. 

What will you learn 

In this module you will: 

• learn a solid understanding of information risk assessment frameworks 
• have a thorough awareness of technical and organisational controls. These can be implemented to minimise adverse information risk 
• learn about information security frameworks and systems that can be applied in organisations. These ensure valuable information assets are managed securely 

By the end of the module, you will be able to: 

• have an in-depth knowledge of information risk management and information security frameworks 
• appreciate organisational risk and security processes on a strategic level. You will be apply that knowledge in practice 
• perform risk assessments and identify relevant controls to minimise risk 
• learn how information management is based on rigorous risk management and consistent application of information security principles 

Assignments / assessment 

Coursework (100%) consisting of:  

• report 1 (30%) 
• report 2 (30%) 
• assessed tasks (30%)   
• discussion board participation (10%) 

This module does not have a final exam

Teaching methods

• independent study 
• contact through discussion forum, email and video conferencing or other modes of contact