ISM-E2003 - Information Security Management, Lecture, 12.1.2024-23.2.2024

Please note! Course description is confirmed for two academic years, which means that in general, e.g. Learning outcomes, assessment methods and key content stays unchanged. However, via course syllabus, it is possible to specify or change the course execution in each realization of the course, such as how the contact sessions are organized, assessment methods weighted or materials used.

LEARNING OUTCOMES

  • Gain a multidisciplinary understanding of information security and its underlying concepts and terminology
  • Become familiar with current and emerging security threats and vulnerabilities
  • Learn about information security lifecycle and its relevant processes
  • Learn how to identify and address security requirements to maintain continual information security in a given context

Credits: 6

Schedule: 12.01.2024 - 23.02.2024

Teacher in charge (valid for whole curriculum period):

Teacher in charge (applies in this implementation): Hadi Ghanbari

Contact information for the course (applies in this implementation):

Office hours for the course are on Fridays (January 12 - February 16) between 14:00-16:00. If you would like to have a one-to-one discussion with Prof. Ghanbari about the course you can book an appointment here. If you need help with the course environment, please directly contact Mostafa Sadeghi, the teaching assistant of this course.

  • Responsible lecturer: Assistant Professor Hadi Ghanbari, hadi.ghanbari@aalto.fi
  • Teaching assistant: Doctoral candidate Mostafa Sadeghi mostafa.sadeghi@aalto.fi

CEFR level (valid for whole curriculum period):

Language of instruction and studies (applies in this implementation):

Teaching language: English. Languages of study attainment: English

CONTENT, ASSESSMENT AND WORKLOAD

Content

  • valid for whole curriculum period:

    • Introduction to information security
    • Information security and digital business
    • Information security lifecycle
    • Information security policies and standards
    • Case studies 

  • applies in this implementation

    In this course we provide you with a multi-disciplinary and holistic understanding of information security management, as a fundamental element for ensuring business continuity and digital resilience in modern societies. To that end, we approach information security from technical, social, organisational, and ethical perspectives. The course is designed based on following books and using various scientific and professional articles and reports:

    •Raggad (2010). Information security management: concepts and practice. CRC Press.
    •Andress (2014).The basics of information security: understanding the fundamentals of InfoSec in theory and practice. Syngress.
    •Paul (2013). Official ISC2 guide to the CSSLP CBK. CRC Press.

Assessment Methods and Criteria

  • valid for whole curriculum period:

    To pass the course, students are expected to complete the following tasks:

    • Self-study: studying the course material and answering a set of online quizzes
    • Individual essay: writing a scientific essay about a given topic
    • Group task: performing a security analysis for a given case
    • Final exam (if you choose to complete the course remotely) OR Class activities (if you choose to complete the course in-class)

  • applies in this implementation

    For more information check the course syllabus slides published on the main page. 

Workload

  • valid for whole curriculum period:

    The course consists of lectures, independent work (e.g. self-study, writing essay) and teamwork (e.g. hands-on exercises, case studies, group task).

    This is a hybrid course meaning that students can complete the course either in-class or remotely. Attendance in the contact sessions is not compulsory for those students who choose to complete the course remotely.

DETAILS

Study Material

  • applies in this implementation

    Course material include a set of custom-designed handout, slides, lecture videos, and exercises that will be published through MyCourses one week before each session. These materials are designed based on different scientific and technical sources. In addition, a set of readings (i.e. articles, case studies, webpages) is suggested for each session. 

    You can find the list of these materials from the course syllabus slides published on the main page. 



      


Substitutes for Courses
Prerequisites
SDG: Sustainable Development Goals

    9 Industry, Innovation and Infrastructure

    11 Sustainable Cities and Communities

FURTHER INFORMATION

Further Information

  • valid for whole curriculum period:

    Teaching Language : English

    Teaching Period : 2022-2023 Spring III
    2023-2024 Spring IV

    Enrollment :

    Student registration will be confirmed after completing the pre-course assignment.

Rules of Conduct - Students´ Rights and Responsibilities (in force from 1 August 2020)

Aalto University Code of Academic Integrity and Handling Violations Thereof