Course guide

propertieszoekene-mailToggle full screen

Security and ICT Audit

FEM31005 Academic year 2010-2011

Lecturers:Prof.Dr. G.J. van der Pijl, Dr. T.P. Tervonen, Ing. A.A.C. de Visser
Coordinator:Ing. A.A.C. de Visser
Structure:Lectures
Assessment:
  • Assignments, essays, ... (30%)
  • Written (re-)examination with essay questions (70%)
Language:UK
Period: Block 1
Exam period: Block 1, Resit (July)
ECTS: 4
Entry requirements:Only accessable for Masterís students with a valid Admission Statement
Exam requirements:Satisfactory result for assignments, essays, ...
Exam material:Mandatory reading and handouts
Study level:Master
Secretary: ESE-Bedrijfseconomie-Accounting, Auditing & Control
Links:Channel , Timetable, Blackboard
Application:via SIN-Online

Aims

After this module, the student is able to:

  • Describe the notion of Information Security and its importance in current Information Systems;

  • List the range of controls available for implementing Information Security;

  • Apply a basic methodology for implementing Information Security within a given organization;

  • Summarize the architecture and the working of security applications, including some e-payment systems;

  • Describe the role of ICT-auditing in the security management cycle;

  • Explain the risk oriented approach of ICT auditors.

Contents

  • A framework to think about Information Security;

  • Technical security mechanisms for implementing security services;

  • Managerial security mechanisms for implementing security services;

  • Network Security applications and techniques;

  • Information Systems Security applications; (including assignments on sending encrypted email and installing a personal firewall);

  • A methodology for implementing Information Security;

  • The role of edp-auditing;

  • Methodology of edp-auditing;

Literature

Compulsory literature

  • Vaant Raval & Ashok Fichadia, Risk, controls and security; concepts and applications, Wiley 2007, ISBN-13 978-0-471-48579-7, ISBN-10 0-471-48579-7
Extra

A set of six assignments must be completed for this course. These assignments must be made in groups of two students. Each assignment should be completed and returned within the given deadline (usually one week).

The assignments are graded with a Pass or Fail. Each Pass is rewarded with 0.5 points (out of 10). No points are awarded for assignments graded with a Fail.

Hence, a maximum of 3 points can be obtained from the assignments, implying that the final grade is composed of 30% of assignment grades and 70% of written exam grade.

The written exam is closed book.

Grades obtained from the assignments are valid during the academic year only.



Security and ICT Audit FEM31005 Academic year 2010-2011