Cybersecurity Law and Regulation
- Describe the international and domestic legal framework relevant to cybersecurity
- Describe and critically assess the application of the criminal law to cybercrime
- Outline and discuss the legal issues which may arise at each step of responding to a cybersecurity incident
- Consider a hypothetical cybersecurity incident, identify the key legal issues which arise from it, and describe what steps need to be taken on foot of these issues
Risk Assessment and Security Standards
- Understand the concepts of risk, risk response and mitigation
- Identify and protect an organization from unacceptable losses
- Apply the NIST/ISO risk management processes
- Outline the system security boundary
- Identify security risk components
- Estimate the impact of compromises to confidentiality, integrity and availability
- Adopt the appropriate model for categorizing system risk
- Set the stage for successful risk management
- Document risk assessment and management decisions
Information Security
- Understand Information Security
- Identify Security concerns in the design and implementation of secure systems
- Understand and apply Security models and design principles
- Understand:
- Role of cryptography and security protocols
- Privilege management access control
- Common software and network vulnerabilities
- Usable security and the human factor
- Discuss the concepts of Privacy VS Surveillance
- Undertake real world case studies in information security
Leadership in Security
A student successfully completing this module will gain a deeper understanding of what it takes to improve security. For those already working in security, they will be better prepared to lead parts of a security programme, or to take on more responsibility. For those moving towards security, this module will help link their prior experience with current security challenges, and assist in positioning for a lateral move into security.
- Take stock and set direction as a security leader; measure security and identify critical gaps; assess risk and weigh priorities; track strategic threats and maintain situational awareness
- Manage Upwards and Outwards: learn how to be an effective advocate for security inside an organisation; influencing leadership and organisational culture; communicating security to executives; gaining and increasing security investment, balancing security and compliance (and other key alliances)
- Managing Security Talent: building and retaining a strong team: attracting and assessing security talent; maximising retention; leading security professionals
- Executing on a Security Programme: gain insights from established security leaders on how they operate and what they have learned.