Monash University

Leader(s): Mr Osama Dandash

Offered

Caulfield Second semester 2009 (Day)

Synopsis

This unit will provide students with a knowledge of information systems security issues, and their relevance to the management of information systems in contemporary organisations. The students will gain knowledge of the nature of information threats, risks and vulnerabilities and of the control technologies and techniques which can be applied to reduce risk. Students will be expected to demonstrate ethically sound viewpoints with respect to the protection of information resources while maintaining a secure IS framework related to a defense in depth strategy. Further students will have an understanding of the ethical, legal and criminal issues relating to the security of information systems. Additionally students will be required to analyse and assess recent developments and future trends in IS security technologies.

Objectives

At the completion of this subject students should have knowledge and understanding and be able to analyse:

1. The importance of information systems security issues to contemporary organisations;
2. Information security concepts and philosophies;
3. Threats, vulnerabilities and risks to an organisations' information assets and the control technologies and techniques required to support this;
4. Understanding of the mathematical foundation of cryptoanalysis;
5. The ethical, legal and criminal issues relating to the security of information systems;
6. Evalute current and future developments and trends in security control technologies and techniques;
7. the relevance of human factors to information security planning and management.

At the completion of this subject students should have developed attitudes which allow them to:

1. Adopt a critical approach to the analysis and design of information systems security systems;
2. Willingness to apply ethical standards of security issues;
3. Demonstrate ethically sound viewpoints with respect to the protection of information resources while maintaining a secure IS framework, specifically related to (but not limited to) the goals of security such as confidentiality, integrity, and availability, in the professional development of information systems;
4. cooperate within groups and adopt and practise professional ethics that influence work behaviour.

At the completion of this subject students should have the skills to:

1. Apply information security concepts in the analysis of information systems security issues;
2. Apply risk management techniques to the planning and management of information systems security systems;
3. Apply security analysis and design methods and techniques in the analysis of threats, risk and vulnerabilities to an information system;
4. Apply the security concept in securing information systems by exploring the security mechanism available in the operating systems environment.

Students may be required to work in teams to complete some of the assessment and thus must develop appropriate interpersonal communication and leadership skills.

Assessment

Examination (2 hours): 50%; Assignments: 50%

Contact hours

3 hrs/week

Additional information on this unit is available from the faculty at:

http://www.infotech.monash.edu.au/units/fit1019/