Data on the course

Show instruction and examinations
813623S Information Security Policy and Management in Organisations, 5 ECTS cr 
Code 813623S  Validity 01.08.1950 -
Name Information Security Policy and Management in Organisations  Abbreviation Information Sec 
Scope5 ECTS cr   
TypeAdvanced Studies Discipline3259 Information Processing Science 
TypeCourse   
  Grading1 - 5, pass, fail 
 
   
Unit Information Processing Science DP 

Teachers
Name
Nataliya Shevchuk 

Description
ECTS Credits 

5 ECTS credits/134 hours of work

 
Language of instruction 

English

 
Timing 

2nd year of Master’s and GS3D studies, autumn semester, period 1

 
Learning outcomes 

After completing the course, the student is able to:

•    Develop BPC;  
•    Develop organisation specific information security policies and sub-policy systems in organisations;
•    Improve employees’ compliance with the information security procedures through training, campaigning and other measures; 
•    Carry out risk management in practice;
•    Estimate the economical investment in information security;
•    Understand the strengths and weaknesses of information security management stan-dards;
•    Understand the certifications in the area of information security management;
•    Design information security policies at organisations.

 
Contents 

1.    BCP;
2.    Development of organisation specific information security policies and sub-policy systems at organisations;
3.    Measuring employees’ compliance with information security policies;
4.    Improving employees’ compliance with the information security procedures through training, campaigning and other means;
5.    Information security risk management in practice, estimation of economical investment in information security;
6.    Information security management standards;
7.    Certifications related to information security.

 
Mode of delivery 

Face-to-face teaching

 
Learning activities and teaching methods 

Lectures 30h, exercises 18h, student preparation and reading for exercises and examination 86h.

 
Target group 

 

 
Prerequisites and co-requisites 

Bachelor degree or other equivalent degree and course “811168P Introduction to Information Security” or principles of information security, or similar knowledge obtained from other courses.

 
Recommended optional programme components 

 

 
Recommended or required reading 

Articles (to be announced later)

 
Assessment methods and criteria 

Examination.

 
Grading 

Grading: 1–5

 
Person responsible 

Mikko Siponen

 
Working life cooperation 

No

 


Current and future instruction
Functions Name Type ECTS cr Teacher Schedule
registration period has not begun Information Security Policy and Management in Organisations  Course  Nataliya Shevchuk  22.03.22 -03.05.22

Future examinations
No examinations in WebOodi