cse5crm cyber risk management and compliance
CYBER RISK MANAGEMENT AND COMPLIANCE
CSE5CRM
2019
Credit points: 15
Subject outline
In this subject, students will learn about cyber threats and vulnerabilities, and how different organisations manage these in proportion to the risk that they pose. Students will learn quantitative techniques to assess cyber risks, and apply cost models underlying appropriate technical responses. Students will become familiar with compliance functions and reporting.
SchoolSchool Engineering&Mathematical Sciences
Credit points15
Subject Co-ordinatorAlex Ng
Available to Study Abroad StudentsYes
Subject year levelYear Level 5 - Masters
Exchange StudentsYes
Subject particulars
Subject rules
Prerequisites Must be admitted into SMCYC or SMCYB or SMCYL or must obtain subject coordinator's approval
Co-requisitesN/A
Incompatible subjectsN/A
Equivalent subjectsN/A
Special conditionsN/A
Graduate capabilities & intended learning outcomes
01. Evaluate assets for classification in risk assessments
- Activities:
- Students to listen to lectures, discuss case studies, read/watch videos about concepts of asset classification. They then apply their learning by engaging in a moderated online forum discussion.
02. Formulate approaches to assessing cyber risk
- Activities:
- Students to read about cyber security risk approaches and possible managerial and technical approaches to their assessment. They will be provided with various case scenarios to determine their application to practice. Assessment will be cyber security risk assessment report.
03. Determine cost-effective treatments to manage cyber risk
- Activities:
- Students to interact with lectures, discuss case studies, read/watch videos about concepts of cost-effective treatments to manage cyber risk. They then apply their learning by engaging in a moderated online forum discussion.
04. Assess and monitor risk management outcomes
- Activities:
- Students to engage with lectures, discuss case studies, read/watch videos about contracts and service agreements. They then apply their learning by engaging in a moderated online forum discussion.
Subject options
Select to view your study options…
Melbourne, 2019, Semester 1, Day
Overview
Online enrolmentYes
Maximum enrolment sizeN/A
Enrolment information
Subject Instance Co-ordinatorAlex Ng
Class requirements
LectureWeek: 10 - 22
Six 4.0 hours lecture every two weeks on any day including weekend during the day from week 10 to week 22 and delivered via face-to-face.
Computer LaboratoryWeek: 10 - 22
Six 4.0 hours computer laboratory every two weeks on any day including weekend during the day from week 10 to week 22 and delivered via face-to-face.
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Asset classification discussion forum (500- word equivalent) | Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Cost-effective treatments to manage cyber risk forum (500-word equivalent) | Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion. | 10 | 03 |
| Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) | Development of a Cyber security risk assessment program with discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test (2hrs, 2000- word equivalent) | With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |
Melbourne, 2019, Summer, Day
Overview
Online enrolmentYes
Maximum enrolment sizeN/A
Enrolment information
Subject Instance Co-ordinatorAlex Ng
Class requirements
LectureWeek: 45
Six 4.0 hours lecture every two weeks on any day including weekend during the day in week 45 and delivered via face-to-face.
Computer LaboratoryWeek: 45
Six 4.0 hours computer laboratory every two weeks on any day including weekend during the day in week 45 and delivered via face-to-face.
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Asset classification discussion forum (500- word equivalent) | Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Cost-effective treatments to manage cyber risk forum (500-word equivalent) | Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion. | 10 | 03 |
| Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) | Development of a Cyber security risk assessment program with discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test (2hrs, 2000- word equivalent) | With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |
Melbourne, 2019, Semester 1, Blended
Overview
Online enrolmentYes
Maximum enrolment sizeN/A
Enrolment information
Subject Instance Co-ordinatorAlex Ng
Class requirements
Unscheduled Online ClassWeek: 10 - 22
Twelve 2.0 hours unscheduled online class per study period on weekdays during the day from week 10 to week 22 and delivered via online.
"Consists of online, reading and self-check tests, for self-directed study. All materials will be available asynchronously on the LMS."
PracticalWeek: 10 - 22
Ten 1.0 hours practical per study period on weekdays during the day from week 10 to week 22 and delivered via blended.
"Synchronous online practical tutorial
supported by practical notes and
reading material on the LMS.
"
PracticalWeek: 10 - 22
Two 7.0 hours practical per study period on weekdays during the day from week 10 to week 22 and delivered via face-to-face.
"A compulsory practical workshop
of 2 days at the end of the semester will
be offered for all off campus students.
"
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Asset classification discussion forum (500- word equivalent) | Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Cost-effective treatments to manage cyber risk forum (500-word equivalent) | Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion. | 10 | 03 |
| Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) | Development of a Cyber security risk assessment program with discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test (2hrs, 2000- word equivalent) | With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |
Melbourne, 2019, Summer, Blended
Overview
Online enrolmentYes
Maximum enrolment sizeN/A
Enrolment information
Subject Instance Co-ordinatorAlex Ng
Class requirements
Unscheduled Online ClassWeek: 45
Twelve 2.0 hours unscheduled online class per study period on weekends during the day in week 45 and delivered via online.
"Consists of online, reading and self-check tests, for self-directed study. All materials will be available asynchronously on the LMS."
PracticalWeek: 45
Ten 1.0 hours practical per study period on weekdays during the day in week 45 and delivered via blended.
"Synchronous online practical tutorial
supported by practical notes and
reading material on the LMS.
"
PracticalWeek: 45
Two 7.0 hours practical per study period on weekdays during the day in week 45 and delivered via face-to-face.
"A compulsory practical workshop
of 2 days at the end of the semester will
be offered for all off campus students.
"
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Asset classification discussion forum (500- word equivalent) | Students to use online forum to discuss asset classification concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Cost-effective treatments to manage cyber risk forum (500-word equivalent) | Students to use online forum to discuss cost-effective treatments to manage cyber risk. Marking rubric to specify the structure of the forum discussion. | 10 | 03 |
| Develop approaches to assessing cyber risk - Case study and Report (2000- word equivalent) | Development of a Cyber security risk assessment program with discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test (2hrs, 2000- word equivalent) | With a focus on how to manage a cyber security risk management program To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |