Viewing Unit History

The information below is relevant from 09/07/2018 to 09/07/2023
Click Here to view current information

COIT20263 - Information Security Management

General Information

Unit Synopsis

This unit provides you with a thorough understanding of the managerial aspects of information security in a business organisation. You will complement your existing knowledge of information and communication technologies by studying the organisational and management issues relevant to information security. You will learn about the importance of information security plans, security risk management and compliance monitoring, and develop and apply security policies and best practices. Through case studies, you will consider information security strategies that support business objectives while being aware of legal and ethical obligations. As a result, you will have the knowledge and skills to contribute to information security governance in accordance with standards set by governments, professional bodies and industry.

Details

Level Postgraduate
Unit Level 9
Credit Points 6
Student Contribution Band SCA Band 2
Fraction of Full-Time Student Load 0.125
Pre-requisites or Co-requisites

Prerequisite: COIT20261 Network Routing and Switching

Important note: Students enrolled in a subsequent unit who failed their pre-requisite unit, should drop the subsequent unit before the census date or within 10 working days of Fail grade notification. Students who do not drop the unit in this timeframe cannot later drop the unit without academic and financial liability. See details in the Assessment Policy and Procedure (Higher Education Coursework).

Class Timetable View Unit Timetable
Residential School No Residential School

Unit Availabilities from Term 2 - 2019

Term 2 - 2019 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 3 - 2019 Profile
Brisbane
Melbourne
Online
Sydney
Term 1 - 2020 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 2 - 2020 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 3 - 2020 Profile
Brisbane
Melbourne
Online
Sydney
Term 1 - 2021 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 2 - 2021 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 3 - 2021 Profile
Brisbane
Melbourne
Online
Sydney
Term 1 - 2022 Profile
Brisbane
Melbourne
Online
Sydney
Term 2 - 2022 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 3 - 2022 Profile
Brisbane
Melbourne
Online
Sydney
Term 1 - 2023 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 2 - 2023 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 3 - 2023 Profile
Brisbane
Melbourne
Online
Sydney
Term 1 - 2024 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 2 - 2024 Profile
Brisbane
Melbourne
Online
Rockhampton
Sydney
Term 3 - 2024 Profile
Brisbane
Melbourne
Online
Sydney

Attendance Requirements

All on-campus students are expected to attend scheduled classes – in some units, these classes are identified as a mandatory (pass/fail) component and attendance is compulsory. International students, on a student visa, must maintain a full time study load and meet both attendance and academic progress requirements in each study period (satisfactory attendance for International students is defined as maintaining at least an 80% attendance record).

Assessment Overview

Recommended Student Time Commitment

Each 6-credit Postgraduate unit at CQUniversity requires an overall time commitment of an average of 12.5 hours of study per week, making a total of 150 hours for the unit.

Assessment Tasks

Assessment Task Weighting
1. Written Assessment 35%
2. Group Discussion 25%
3. Written Assessment 40%

This is a graded unit: your overall grade will be calculated from the marks or grades for each assessment task, based on the relative weightings shown in the table above. You must obtain an overall mark for the unit of at least 50%, or an overall grade of ‘pass’ in order to pass the unit. If any ‘pass/fail’ tasks are shown in the table above they must also be completed successfully (‘pass’ grade). You must also meet any minimum mark requirements specified for a particular assessment task, as detailed in the ‘assessment task’ section (note that in some instances, the minimum mark for a task may be greater than 50%).

Consult the University’s Grades and Results Policy for more details of interim results and final grades

Past Exams

To view Past Exams,
please login
Previous Feedback

Term 1 - 2021 : The overall satisfaction for students in the last offering of this course was 4.9 (on a 5 point Likert scale), based on a 27.08% response rate.

Feedback, Recommendations and Responses

Every unit is reviewed for enhancement each year. At the most recent review, the following staff and student feedback items were identified and recommendations were made.

Source: Self-reflection.
Feedback
Answers to assessment tasks show that some students have difficulty in following key information security management concepts.
Recommendation
Change tutorial questions from problem-based learning environments to solution-based learning environments.
Action Taken
This recommendation has not been completed yet. However, the unit material has been reviewed and the plan is to update workshops to provide students more practice of deconstructing security policies and writing security policies. We will continue to work on this in the upcoming terms.
Source: Self-reflection
Feedback
This unit uses examples of security policies and risk assessments from industry. Some students have difficulty in extracting key concepts from the examples and applying the concepts to write new policies.
Recommendation
Update workshops to provide students more practice of deconstructing security policies and writing security policies
Action Taken
Nil.
Unit learning Outcomes

On successful completion of this unit, you will be able to:

  1. Analyse the information security policies and programs of organisations based on national and international standards
  2. Develop the guidelines for an information security policy for an organisation
  3. Apply information security risk standards to protect information assets in organisations
  4. Justify information security certification and accreditation required in relation to personnel and information security of an organisation
  5. Compare and contrast the laws and ethics of information security management.

Australian Computer Society (ACS) recognises the Skills Framework for the Information Age (SFIA). SFIA is in use in over 100 countries and provides a widely used and consistent definition of ICT skills. SFIA is increasingly being used when developing job descriptions and role profiles.
ACS members can use the online tool MySFIA to build their skills profile at https://www.acs.org.au/professionalrecognition/mysfia-b2c.html
This unit contributes to the following workplace skills as defined by SFIA. The SFIA code is included:
  • Information Management (IRMG)
  • Information Security (SCTY)
  • Business Risk Management (BURM);
  • Continuity Management (COPL)
  • Project Management (PRMG)
  • Methods and Tools (METL)

Alignment of Assessment Tasks to Learning Outcomes
Assessment Tasks Learning Outcomes
1 2 3 4 5
1 - Written Assessment
2 - Group Discussion
3 - Written Assessment
Alignment of Graduate Attributes to Learning Outcomes
Advanced Level
Professional Level
Graduate Attributes Learning Outcomes
1 2 3 4 5
1 - Knowledge
2 - Communication
3 - Cognitive, technical and creative skills
4 - Research
6 - Ethical and Professional Responsibility
Alignment of Assessment Tasks to Graduate Attributes
Advanced Level
Professional Level
Assessment Tasks Graduate Attributes
1 2 3 4 5 6 7 8
1 - Written Assessment
2 - Group Discussion
3 - Written Assessment