Information Systems Risk & Security
Gain a secure career assessing, managing and reducing IT security risks. From cybercrime to ethics and fraud; explore ways to ensure the integrity and security of information assets. Lead and apply control and assurance standards in real settings.
Your upfront cost: $0
- 31 Aug 2020
Swinburne University of Technology leads the way with innovative and new ways of teaching, learning and thinking. It offers a wide range of study options, from pre-apprenticeships, undergraduate, postgraduate and PhDs, including online degrees with Open Universities Australia. Swinburne is known for career-oriented education and encouraging lifelong learning.
QS RANKING 2020
Times Higher Education Ranking 2020
Students who successfully complete this subject will be able to:
1. Describe the importance of information security and risks management in achieving organisational goals and objectives
2. Assess and apply information systems risk and security management standards and frameworks to real-word case based scenarios
3. Analyse major theories, concepts and methodologies for managing risks and assuring the integrity and security of information assets
4 Evaluate appropriate governance, assurance and internal control techniques for managing information risks and security
5 Communicate effectively as a professional and function as an effective leader or member of a team.
- An introduction to Information Systems risk and security
- Risk management, assessment and mitigation
- Information security management, governance and assurance
- Role of policies and standards in IS risk and security management
- Contingency planning, including incident management, business continuity and disaster recovery planning
- Fraud and forensic auditing: Fraud, cybercrime, forensic auditing and continuous monitoring
- Compliance frameworks and legal, professional and ethical issues in IS security and risk management
- Major Theories, concepts and methodologies for managing information systems and assuring the integrity and security of information assets
- The socio-technological dimensions (human and organisational factors) in IS security and risk management
You must have successfully completed the following subject(s) before starting this subject:
SWI-INF10003-Introduction to Business Information Systems, or SWI-INF10006 , or SWE20004 , or COS20007 ;
In addition to completing one of - INF10003, INF10006, SWE20004, COS20007 students must also complete an additional 8 subjects (100 credit points) before enrolling in INF30020.
No special requirements
This subject of study introduces students to information risk and security management in contemporary enterprise. The subject engages students with the knowledge and techniques applied by organisations to manage risks and provide for information security. This includes the implementation of appropriate information management plans, assurance processes, standards and frameworks. Students will learn about the legal, professional and ethical responsibilities of information risk and security management through real-world case based scenarios and become familiar with approaches to information governance and assurance including the automated tools and approaches that are used by organisations.
- Assignment 1 — Individual (20-30%)
- Assignment 2 — Group (20-30%)
- Assignment 3 — Individual (20-30%)
- Test — Individual (20-40%)
Check the learning management system (LMS) of your university for textbook details.
Bachelor of Business Information Systems
- Core Subjects Information Systems
- Major in Business Analysis
- Major in Data Analytics
- Co-Major in Economics (currently in Teach-Out)
- Co-Major in Marketing