Module Details

The information contained in this module specification was correct at the time of publication but may be subject to change, either during the session because of unforeseen circumstances, or following review of the module at the end of the session. Queries about the module should be directed to the member of staff with responsibility for the module.
Title SECURITY RISK MANAGEMENT
Code CKIT531
Coordinator Mr K Dures
Computer Science
K.Dures@liverpool.ac.uk
Year CATS Level Semester CATS Value
Session 2020-21 Level 7 FHEQ Whole Session 15

Aims

To provide students with theoretical and practical knowledge of the domain of (Cyber) Security Risk Management, along with an insight into the formal and systematic approaches core to Security Risk Management . To provide students with a substantial technical awareness, and managerial competence, concerning information security policy and management. To provide students with advanced knowledge of the security issues that can affect information and computer systems . To provide students with practical ability in the application of the concepts, techniques, methods and approaches of Security Risk Management in the context of enterprises of all kinds .


Learning Outcomes

(LO1) An ability to analyse and assess (Cyber) Risk Management scenarios by utilising systemic analysis processes.

(LO2) A systematic ability develop and deploy a program of Cyber Security using the tools and techniques of security risk management.

(LO3) An in-depth and critical understanding of the professional codes of practice, and legal, social, cultural and ethical issues, related to security risk management.

(LO4) A comprehensive awareness of the social and environmental context in which security risk management operates.

(LO5) The practical ability to apply the tools and techniques of security risk management, in a manner that is both practical and pragmatic, and in the context of enterprises of all kinds.

(S1) Organisational skills

(S2) Communication skills

(S3) IT skills

(S4) Communication and collaboration online participating in digital networks for learning and research

(S5) Learning skills online studying and learning effectively in technology-rich environments, formal and informal


Syllabus

 

Week 1 The principles of (Cyber) Security Risk Management.   Week 2 Security Risk management management models, roles, and functions.   Week 3 Strategic management planning and strategies, the security management life cycle.    Week 4 Laws and regulatory requirements concerning cyber security, and security standards and controls.   Week 5 Security metrics and Key Performance Indicators (KPIs).   Week 6 Physical security and environmental threats, contingency planning.   Week 7 Security training and awareness, the creation of a security staff training plan.   Week 8 The future of Cyber Security Risk Management; the potential impacts of evolving technologies.


Teaching and Learning Strategies

Teaching Method 1 - Online Learning
Description: Weekly seminar supported by asynchronous discussion in a virtual classroom environment facilitated by an online instructor.
Attendance Recorded: Yes
Notes: Number of hours per week that students are expected to attend the virtual classroom so as to participate in discussion, dedicated to group work and individual assessment is 7.5.


Teaching Schedule

  Lectures Seminars Tutorials Lab Practicals Fieldwork Placement Other TOTAL
Study Hours           60

60
Timetable (if known)              
Private Study 90
TOTAL HOURS 150

Assessment

EXAM Duration Timing
(Semester)
% of
final
mark
Resit/resubmission
opportunity
Penalty for late
submission
Notes
             
CONTINUOUS Duration Timing
(Semester)
% of
final
mark
Resit/resubmission
opportunity
Penalty for late
submission
Notes
Essay: Defining SRM models, roles, and functions Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 2  One Week/ 500 words         
Eight discussion questions Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :whole session  Weekly Discussion Qu    40       
Essay: Security Risk Managment (SRM) methods and tools. Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 1  One Week/ 500-750         
Essay: The SRM life cycle Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 3  One Week/ 750–1,00         
Essay: Laws and regulatory requirements Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 4  One Week/ 500–750          
Essay: Measuring Security with Key Performance Indicators Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 5  One Week/ 500–750          
Essay: Security threats and contingency planning Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 6  One Week/ 500–750          
Essay: Creating a security staff training and awareness plan Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 7  One Week/ 750–1,00         
Essay: Predicting the future of Cyber Security Risk Management Standard UoL penalty applies for late submission. This is not an anonymous assessment. Assessment Schedule (When) :Week 8  One week/500 words         

Recommended Texts

Reading lists are managed at readinglists.liverpool.ac.uk. Click here to access the reading lists for this module.