Explore UCD

UCD Home >

COMP47900

Academic Year 2024/2025

Cyber Risk Assessment and Standards (COMP47900)

Subject:
Computer Science
College:
Science
School:
Computer Science
Level:
4 (Masters)
Credits:
5
Module Coordinator:
Dr Rob Brennan
Trimester:
Autumn
Mode of Delivery:
Blended
Internship Module:
No
How will I be graded?
Letter grades

Curricular information is subject to change.

This module will enable students to understand each of the key steps of a risk assessment, including how to identify risks, manage hazards and determine the likelihood of harm using a standards-based approach that covers both ISO and NIST standards. Students will be able to carry out a risk assessment of an organisation of their choice as a group project. The module will cover the theories, concepts, and practices of threat modeling and enterprise risk management. It will outline the context for risk management, the various methods of risk assessment and the options for risk response and mitigation.

About this Module

Learning Outcomes:

- Understand the concepts of risk, risk response and mitigation
- Identify and protecting an organization from unacceptable losses
- Apply the NIST/ISO risk management processes
- Outlining the system security boundary
- Create a system security plan
- Identify security risk components
- Estimate the impact of compromises to confidentiality, integrity and availability
- Adopt the appropriate model for categorizing system risk
- Setting the stage for successful risk management
- Documenting risk assessment and management decisions

Indicative Module Content:

- Introduction to risk, risk management, risk mitigation
- System Security Plans (SSPs)
- Controls
- Risk and the system security boundary
- Identifying security risk components
- NIST/ISO risk management processes
- Risk impact: compromises to confidentiality, integrity and availability
- Models for categorizing system risk
- Documenting critical risk assessment and management
- Collecting on-going security metrics

Student Effort Hours:
Student Effort Type Hours
Lectures

24

Practical

6

Autonomous Student Learning

82

Total

112


Approaches to Teaching and Learning:
The module will be delivered via online lecture and 3 in-person workshops/practicals.

Requirements, Exclusions and Recommendations

Not applicable to this module.


Module Requisites and Incompatibles
Not applicable to this module.
 

Assessment Strategy
Description Timing Component Scale Must Pass Component % of Final Grade In Module Component Repeat Offered
Exam (In-person): 2 Hour Exam Week 14 Standard conversion grade scale 40% No
40
No
Reflective Assignment: Learning Journal (includes personal reflections on group-work) Week 9, Week 15 Alternative linear conversion grade scale 40% No
35
No
Group Work Assignment: Group work on Research Paper presentation, System Security Plan and Risk Assessment Week 4, Week 8, Week 12 Alternative linear conversion grade scale 40% No
25
No

Carry forward of passed components
Yes
 

Resit In Terminal Exam
Spring Yes - 2 Hour
Please see Student Jargon Buster for more information about remediation types and timing. 

Feedback Strategy/Strategies

• Feedback individually to students, post-assessment
• Group/class feedback, post-assessment

How will my Feedback be Delivered?

The lecturer will provide either written or oral feedback to the students

Name Role
Haula Sani Galadima Tutor

Timetabling information is displayed only for guidance purposes, relates to the current Academic Year only and is subject to change.
Autumn Practical Offering 1 Week(s) - 0, 7, 13 Fri 14:00 - 15:50