COIT12212 - Cyber Security Management

General Information

Unit Synopsis

This unit introduces you to the processes and controls for protecting organisations from cyber security threats. You will learn about management controls such as security governance and policy, risk management, and auditing, as well as processes involving employees and end users that contribute to the protection of an organisation's assets. With recent attacks as case studies, this unit will prepare you to select a range of non-technical measures to minimise future cyber security threats.


Level Undergraduate
Unit Level 2
Credit Points 6
Student Contribution Band SCA Band 2
Fraction of Full-Time Student Load 0.125
Pre-requisites or Co-requisites

Pre-requisite: COIT11238 Network Infrastructure Foundations and COIT11223 Information Technology and Society

Important note: Students enrolled in a subsequent unit who failed their pre-requisite unit, should drop the subsequent unit before the census date or within 10 working days of Fail grade notification. Students who do not drop the unit in this timeframe cannot later drop the unit without academic and financial liability. See details in the Assessment Policy and Procedure (Higher Education Coursework).

Class Timetable View Unit Timetable
Residential School No Residential School

Unit Availabilities from Term 1 - 2024

Term 2 - 2024 Profile
Term 3 - 2024 Profile

Attendance Requirements

All on-campus students are expected to attend scheduled classes – in some units, these classes are identified as a mandatory (pass/fail) component and attendance is compulsory. International students, on a student visa, must maintain a full time study load and meet both attendance and academic progress requirements in each study period (satisfactory attendance for International students is defined as maintaining at least an 80% attendance record).

Assessment Overview

Recommended Student Time Commitment

Each 6-credit Undergraduate unit at CQUniversity requires an overall time commitment of an average of 12.5 hours of study per week, making a total of 150 hours for the unit.

Assessment Tasks

Assessment Task Weighting
1. Written Assessment 40%
2. Portfolio 40%
3. Presentation 20%

This is a graded unit: your overall grade will be calculated from the marks or grades for each assessment task, based on the relative weightings shown in the table above. You must obtain an overall mark for the unit of at least 50%, or an overall grade of ‘pass’ in order to pass the unit. If any ‘pass/fail’ tasks are shown in the table above they must also be completed successfully (‘pass’ grade). You must also meet any minimum mark requirements specified for a particular assessment task, as detailed in the ‘assessment task’ section (note that in some instances, the minimum mark for a task may be greater than 50%).

Consult the University’s Grades and Results Policy for more details of interim results and final grades

Past Exams

To view Past Exams,
please login
Previous Feedback

No previous feedback available

Feedback, Recommendations and Responses

Every unit is reviewed for enhancement each year. At the most recent review, the following staff and student feedback items were identified and recommendations were made.

Source: SUTE
Students found the requirement to find templates and write policies and business plans too onerous.
A basic template will be provided for students.
Action Taken
Templates provided to students in the workshops.
Source: SUTE
Students would prefer more consistency in the weekly workshops.
The case study included in assessment 3 will be used for some workshop activities.
Action Taken
Workshops 7, 8, and 9 were amended to include activities based on the case study used in assessment 3.
Source: Student Unit and Teaching Evaluation
Students were confused about the word count and asked if tables were included, as several tables are necessary in the final assessment.
The word count guidelines and table contents expectations in assessments will be clarified in the assessments specifications to alleviate students' confusion.
Action Taken
Source: Unit Coordinator Self Reflection
Students found some of the workshop activities too long.
The relevant workshop activities will be revised
Action Taken
Unit learning Outcomes

On successful completion of this unit, you will be able to:

  1. Discuss the best practice principles, processes and standards in cyber security
  2. Compare the role of management, operational and technical controls in delivering cyber security
  3. Conduct an organisational cyber security risk analysis
  4. Prepare plans for auditing security controls and recovering from security attacks
  5. Explain techniques for managing people to ensure secure IT systems.

The Australian Computer Society (ACS) recognises the Skills Framework for the Information Age (SFIA). SFIA is adopted by organisations, governments and individuals in many countries and provides a widely used and consistent definition of ICT skills. SFIA is increasingly being used when developing job descriptions and role profiles. ACS members can use the tool MySFIA to build a skills profile.

This unit contributes to the following workplace skills as defined by SFIA 7 (the SFIA code is included):

  • Information Security (SCTY)
  • Information Assurance (INAS)

Alignment of Assessment Tasks to Learning Outcomes
Assessment Tasks Learning Outcomes
1 2 3 4 5
1 - Written Assessment
2 - Portfolio
3 - Presentation
Alignment of Graduate Attributes to Learning Outcomes
Introductory Level
Intermediate Level
Graduate Level
Graduate Attributes Learning Outcomes
1 2 3 4 5
1 - Communication
2 - Problem Solving
3 - Critical Thinking
4 - Information Literacy
5 - Team Work
6 - Information Technology Competence
7 - Cross Cultural Competence
8 - Ethical practice
Alignment of Assessment Tasks to Graduate Attributes
Introductory Level
Intermediate Level
Graduate Level
Assessment Tasks Graduate Attributes
1 2 3 4 5 6 7 8 9 10
1 - Written Assessment
2 - Portfolio
3 - Presentation