CYBERSECURITY GOVERNANCE
CSE5CSG
2019
Credit points: 15
Subject outline
In this subject, students will learn how to create and execute frameworks for cyber security governance, based on an understanding of business strategy and risk appetite. Students will become familiar with standards and frameworks commonly used to ensure that business goals can be achieved in a secure way. Students will learn how to identify appropriate roles and responsibilities to support the security function.
School: School Engineering&Mathematical Sciences
Credit points: 15
Subject Co-ordinator: Alex Ng
Available to Study Abroad Students: Yes
Subject year level: Year Level 5 - Masters
Exchange Students: Yes
Subject particulars
Subject rules
Prerequisites: Must have passed CSE5CSP and must be admitted into SMCYC or SMCYL or SMCYB or must obtain subject coordinator's approval.
Co-requisites: N/A
Incompatible subjects: N/A
Equivalent subjects: N/A
Special conditions: N/A
Graduate capabilities & intended learning outcomes
01. Design requirements for cyber security business case development
- Activities:
- Students to listen to lectures, discuss case studies, read/watch videos about concepts of cyber security business case requirements. They then apply their learning by engaging in a moderated online forum discussion.
02. Interpret and design policies to support information security decisions
- Activities:
- Students to read about cyber security governance and policy development and will be provided with various case scenarios to determine their application to practice. Assessment will be cyber security governance policy development and discussion via online forum
03. Generate and use metrics to report on security KPIs
- Activities:
- Students to interact with lectures, discuss case studies, read/watch videos about concepts of security culture. They then apply their learning by using metrics to evaluate and report on security KPIs.
04. Formulate a cyber security governance framework to support cyber strategy
- Activities:
- Students to engage with lectures, discuss case studies, read/watch videos about contracts and service agreements. They then apply their learning by engaging in a moderated online forum discussion.
Melbourne, 2019, Semester 1, Day
Overview
Online enrolment: Yes
Maximum enrolment size: N/A
Enrolment information:
Subject Instance Co-ordinator: Alex Ng
Class requirements
LectureWeek: 10 - 22
Six 4.0 hours lecture every two weeks on any day including weekend during the day from week 10 to week 22 and delivered via face-to-face.
Computer LaboratoryWeek: 10 - 22
Six 4.0 hours computer laboratory every two weeks on any day including weekend from week 10 to week 22 and delivered via face-to-face.
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Cyber security business case development discussion forum (500-word equivalent) | Students to use online forum to discuss cyber security business case development concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Policy development and interpretation forum (500-word equivalent) | Students to use online forum to Policy development and interpretation. Marking rubric to specify the structure of the forum discussion. | 10 | 02 |
| Use metrics and report on security KPIs - Case study and Report (2000-word equivalent) | Development of a Cybersecurity management program with policies and procedures and discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test x 2 hours (2000-word equivalent) | With a focus on how to develop a cyber security governance framework To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |
Melbourne, 2019, Summer, Day
Overview
Online enrolment: Yes
Maximum enrolment size: N/A
Enrolment information:
Subject Instance Co-ordinator: Alex Ng
Class requirements
LectureWeek: 45
Six 4.0 hours lecture every two weeks on any day including weekend during the day in week 45 and delivered via face-to-face.
Computer LaboratoryWeek: 45
Six 4.0 hours computer laboratory every two weeks on any day including weekend during the day in week 45 and delivered via face-to-face.
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Cyber security business case development discussion forum (500-word equivalent) | Students to use online forum to discuss cyber security business case development concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Policy development and interpretation forum (500-word equivalent) | Students to use online forum to Policy development and interpretation. Marking rubric to specify the structure of the forum discussion. | 10 | 02 |
| Use metrics and report on security KPIs - Case study and Report (2000-word equivalent) | Development of a Cybersecurity management program with policies and procedures and discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test x 2 hours (2000-word equivalent) | With a focus on how to develop a cyber security governance framework To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |
Melbourne, 2019, Semester 1, Blended
Overview
Online enrolment: Yes
Maximum enrolment size: N/A
Enrolment information:
Subject Instance Co-ordinator: Alex Ng
Class requirements
Unscheduled Online ClassWeek: 10 - 22
Twelve 2.0 hours unscheduled online class per study period on weekdays during the day from week 10 to week 22 and delivered via online.
"Consists of online, reading and self-check tests, for self-directed study. All materials will be available asynchronously on the LMS."
PracticalWeek: 10 - 22
Ten 1.0 hours practical per study period on weekdays during the day from week 10 to week 22 and delivered via blended.
"Synchronous online practical tutorial
supported by practical notes and
reading material on the LMS.
"
PracticalWeek: 10 - 22
Two 7.0 hours practical per study period on weekdays during the day from week 10 to week 22 and delivered via face-to-face.
"A compulsory practical workshop
of 2 days at the end of the semester will
be offered for all off campus students.
"
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Cyber security business case development discussion forum (500-word equivalent) | Students to use online forum to discuss cyber security business case development concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Policy development and interpretation forum (500-word equivalent) | Students to use online forum to Policy development and interpretation. Marking rubric to specify the structure of the forum discussion. | 10 | 02 |
| Use metrics and report on security KPIs - Case study and Report (2000-word equivalent) | Development of a Cybersecurity management program with policies and procedures and discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test x 2 hours (2000-word equivalent) | With a focus on how to develop a cyber security governance framework To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |
Melbourne, 2019, Summer, Blended
Overview
Online enrolment: Yes
Maximum enrolment size: N/A
Enrolment information:
Subject Instance Co-ordinator: Alex Ng
Class requirements
Unscheduled Online ClassWeek: 45
Twelve 2.0 hours unscheduled online class per study period on weekdays during the day in week 45 and delivered via online.
"Consists of online, reading and self-check tests, for self-directed study. All materials will be available asynchronously on the LMS."
PracticalWeek: 45
Ten 1.0 hours practical per study period on weekdays during the day in week 45 and delivered via blended.
"Synchronous online practical tutorial
supported by practical notes and
reading material on the LMS.
"
PracticalWeek: 45
Two 7.0 hours practical per study period on weekdays during the day in week 45 and delivered via face-to-face.
"A compulsory practical workshop
of 2 days at the end of the semester will
be offered for all off campus students.
"
Assessments
| Assessment element | Comments | % | ILO* |
|---|---|---|---|
| Cyber security business case development discussion forum (500-word equivalent) | Students to use online forum to discuss cyber security business case development concepts. Marking rubric to specify the structure of the forum discussion. | 10 | 01 |
| Policy development and interpretation forum (500-word equivalent) | Students to use online forum to Policy development and interpretation. Marking rubric to specify the structure of the forum discussion. | 10 | 02 |
| Use metrics and report on security KPIs - Case study and Report (2000-word equivalent) | Development of a Cybersecurity management program with policies and procedures and discussion of its applicability. | 40 | 01, 02, 03 |
| 1 closed book test x 2 hours (2000-word equivalent) | With a focus on how to develop a cyber security governance framework To be given in last lecture (or for off campus students at end of 2 day compulsory residential workshop). | 40 | 01, 02, 03, 04 |