1. To provide students with theoretical and practical knowledge of the domain of (Cyber) Security Risk Management, along with an insight into the formal and systematic approaches core to Security Risk Management .

2. To provide students with a substantial technical awareness, and managerial competence, concerning information security policy and management.

3. To provide students with advanced knowledge of the security issues that can affect information and computer systems.

4. To provide students with practical ability in the application of the concepts, techniques, methods and approaches of Security Risk Management in the context of enterprises of all kinds.

(M1) An ability to analyse and assess (Cyber) Risk Management scenarios by utilising systemic analysis processes.

(M2) A systematic ability develop and deploy a program of Cyber Security using the tools and techniques of security risk management.

(M3) An in-depth and critical understanding of the professional codes of practice, and legal, social, cultural and ethical issues, related to security risk management.

(M4) A comprehensive awareness of the social and environmental context in which security risk management operates .

(M5) The practical ability to apply the tools and techniques of security risk management, in a manner that is both practical and pragmatic, and in the context of enterprises of all kinds.

(S1) Communication skills in electronic as well as written form.

(S2) Self-direction and originality in tackling and solving problems.

(S3) An ability to act autonomously and professionally when planning and implementing solutions to computer science problems.

Week 1
The principles of (Cyber) Security Risk Management.

Week 2
Security Risk management, management models, roles, and functions.

Week 3
Strategic management planning and strategies, the security management life cycle.

Week 4
Laws and regulatory requirements concerning cyber security, and security standards and controls.

Week 5
Security metrics and Key Performance Indicators (KPIs).

Week 6
Physical security and environmental threats, contingency planning.

Week 7
Security training and awareness, the creation of a security staff training plan.

Week 8
The future of Cyber Security Risk Management; the potential impacts of evolving technologies.

The mode of delivery is by online learning, facilitated by a Virtual Learning Environment (VLE). This mode of study enables students to pursue modules via home study while continuing in employment. Module delivery involves the establishment of a virtual classroom in which a relatively small group of students (usually 10-25) work under the direction of a faculty member. Module delivery proceeds via a series of eight one-week online sessions, each of which comprises an online lecture, supported by other eLearning activities, posted electronically to a public folder in the virtual classroom. The mode of learning includes a range of required and optional eLearning activities, including but not limited to: lecture casts, live seminars, self-assessment opportunities, and required and suggested further reading and try-for-yourself activities. Communication within the virtual classroom is asynchronous, preserving the requirement that students are able to pursue the module in their own time, within the weekly time-frame of each online session. An important element of the module provision is active learning through collaborative, cohort-based, learning using discussion fora where the students engage in assessed discussions facilitated by the faculty member responsible for the module. This in turn encourages both confidence and global citizenship (given the international nature of the online student body).