CYBER RISK MANAGEMENT AND COMPLIANCE

CSE5CRM

2019

Credit points: 15

Subject outline

In this subject, students will learn about cyber threats and vulnerabilities, and how different organisations manage these in proportion to the risk that they pose. Students will learn quantitative techniques to assess cyber risks, and apply cost models underlying appropriate technical responses. Students will become familiar with compliance functions and reporting.

SchoolSchool Engineering&Mathematical Sciences

Credit points15

Subject Co-ordinatorAlex Ng

Available to Study Abroad StudentsYes

Subject year levelYear Level 5 - Masters

Exchange StudentsYes

Subject particulars

Subject rules

Prerequisites Must be admitted into SMCYC or SMCYB or SMCYL or must obtain subject coordinator's approval

Co-requisitesN/A

Incompatible subjectsN/A

Equivalent subjectsN/A

Special conditionsN/A

Graduate capabilities & intended learning outcomes

01. Evaluate assets for classification in risk assessments

Activities:
Students to listen to lectures, discuss case studies, read/watch videos about concepts of asset classification. They then apply their learning by engaging in a moderated online forum discussion.

02. Formulate approaches to assessing cyber risk

Activities:
Students to read about cyber security risk approaches and possible managerial and technical approaches to their assessment. They will be provided with various case scenarios to determine their application to practice. Assessment will be cyber security risk assessment report.

03. Determine cost-effective treatments to manage cyber risk

Activities:
Students to interact with lectures, discuss case studies, read/watch videos about concepts of cost-effective treatments to manage cyber risk. They then apply their learning by engaging in a moderated online forum discussion.

04. Assess and monitor risk management outcomes

Activities:
Students to engage with lectures, discuss case studies, read/watch videos about contracts and service agreements. They then apply their learning by engaging in a moderated online forum discussion.

Subject options

Select to view your study options…

Start date between: and    Key dates

Melbourne, 2019, Semester 1, Day

Overview

Online enrolmentYes

Maximum enrolment sizeN/A

Enrolment information

Subject Instance Co-ordinatorAlex Ng

Class requirements

Lecture Week: 10 - 22
Six 4.0 hours lecture every two weeks on any day including weekend during the day from week 10 to week 22 and delivered via face-to-face.

Computer Laboratory Week: 10 - 22
Six 4.0 hours computer laboratory every two weeks on any day including weekend during the day from week 10 to week 22 and delivered via face-to-face.

Assessments

Assessment elementComments% ILO*
Asset classification discussion forum (500- word equivalent)Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. 10 01
Cost-effective treatments to manage cyber risk forum (500-word equivalent)Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion.10 03
Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) Development of a Cyber security risk assessment program with discussion of its applicability.40 01, 02, 03
1 closed book test (2hrs, 2000- word equivalent)With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop).40 01, 02, 03, 04

Melbourne, 2019, Summer 1, Day

Overview

Online enrolmentYes

Maximum enrolment sizeN/A

Enrolment information

Subject Instance Co-ordinatorAlex Ng

Class requirements

Lecture Week: 45
Six 4.0 hours lecture every two weeks on any day including weekend during the day in week 45 and delivered via face-to-face.

Computer Laboratory Week: 45
Six 4.0 hours computer laboratory every two weeks on any day including weekend during the day in week 45 and delivered via face-to-face.

Assessments

Assessment elementComments% ILO*
Asset classification discussion forum (500- word equivalent)Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. 10 01
Cost-effective treatments to manage cyber risk forum (500-word equivalent)Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion.10 03
Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) Development of a Cyber security risk assessment program with discussion of its applicability.40 01, 02, 03
1 closed book test (2hrs, 2000- word equivalent)With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop).40 01, 02, 03, 04

Melbourne, 2019, Semester 1, Blended

Overview

Online enrolmentYes

Maximum enrolment sizeN/A

Enrolment information

Subject Instance Co-ordinatorAlex Ng

Class requirements

Unscheduled Online Class Week: 10 - 22
Twelve 2.0 hours unscheduled online class per study period on weekdays during the day from week 10 to week 22 and delivered via online.
"Consists of online, reading and self-check tests, for self-directed study. All materials will be available asynchronously on the LMS."

Practical Week: 10 - 22
Ten 1.0 hours practical per study period on weekdays during the day from week 10 to week 22 and delivered via blended.
"Synchronous online practical tutorial supported by practical notes and reading material on the LMS. "

Practical Week: 10 - 22
Two 7.0 hours practical per study period on weekdays during the day from week 10 to week 22 and delivered via face-to-face.
"A compulsory practical workshop of 2 days at the end of the semester will be offered for all off campus students. "

Assessments

Assessment elementComments% ILO*
Asset classification discussion forum (500- word equivalent)Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. 10 01
Cost-effective treatments to manage cyber risk forum (500-word equivalent)Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion.10 03
Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) Development of a Cyber security risk assessment program with discussion of its applicability.40 01, 02, 03
1 closed book test (2hrs, 2000- word equivalent)With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop).40 01, 02, 03, 04

Melbourne, 2019, Summer 1, Blended

Overview

Online enrolmentYes

Maximum enrolment sizeN/A

Enrolment information

Subject Instance Co-ordinatorAlex Ng

Class requirements

Unscheduled Online Class Week: 45
Twelve 2.0 hours unscheduled online class per study period on weekends during the day in week 45 and delivered via online.
"Consists of online, reading and self-check tests, for self-directed study. All materials will be available asynchronously on the LMS."

Practical Week: 45
Ten 1.0 hours practical per study period on weekdays during the day in week 45 and delivered via blended.
"Synchronous online practical tutorial supported by practical notes and reading material on the LMS. "

Practical Week: 45
Two 7.0 hours practical per study period on weekdays during the day in week 45 and delivered via face-to-face.
"A compulsory practical workshop of 2 days at the end of the semester will be offered for all off campus students. "

Assessments

Assessment elementComments% ILO*
Asset classification discussion forum (500- word equivalent)Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. 10 01
Cost-effective treatments to manage cyber risk forum (500-word equivalent)Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion.10 03
Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) Development of a Cyber security risk assessment program with discussion of its applicability.40 01, 02, 03
1 closed book test (2hrs, 2000- word equivalent)With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop).40 01, 02, 03, 04