3404366: Risk and Security Management

zurück zur Übersicht
Semester:WS 12/13
Art:Vorlesung / Übung
Sprache:Englisch
Plansemester:3
Lektionen / Semester:60.0 L / 45.0 h
Selbststudium:75.0 h

Modulleitung/Dozierende

Studiengang

Masterstudium IT and Business Process Management (01.10.2008)

Beschreibung

  • Motivation, Schedule & Introduction
  • - Organizational Information Security
    • IT Governance / Compliance
    • Laws
    • Policies
    • Standards
    • Frameworks
    • Controls
    • Case of implementing IT-Governance
  • Security of Data
    • Principles of Data Security
    • Creation of Data
    • Responsibilities for the Asset Data
    • Meta-Data for a Risk Information System
    • Protection of Private Data
    • Threats and Cases
  • Technical Security
    • States, Codes and Cardinalities
    • Networks
    • Computers
    • Software

Lernergebnisse

Goals of this module are that students

  • gain a relevant overview about information risks in enterprises in all resource areas (organization, data and informations technique {hardware, software, networks})
  • become able to decide and judge about controls of information risk-observing strategies
  • become able to demonstrate threats in multi-user computer systems.

Kompetenzen

Literatur

Mandatory:

  • Stallings, W,; Brown, L.: Computer Security Principles and Practive, Pearson 2012.

Recommended:
  • Lehtinen, R,; Russell, D.: Computer Security Basics. 2nd ed., O Reilley', Beijing – Cambridge et al. 2006.
  • Barman, S.: Writing Security Policies. New Riders, Pearson, Indianapolis 2002.

Termine

DatumZeitRaum
27.09.201209:00 - 12:00S1
11.10.201209:00 - 12:00S1
19.10.201209:00 - 18:00S2
09.11.201213:00 - 18:00S8
16.11.201209:00 - 18:00S3
22.11.201209:00 - 12:00H2