Information security risk management & Privacy (5 cr)
Code: MS00BP20-3002
General information
Enrollment
01.05.2021 - 13.09.2021
Timing
06.09.2021 - 31.12.2021
Number of ECTS credits allocated
5 op
Mode of delivery
Contact teaching
Unit
Engineering and Business
Teaching languages
- Finnish
Degree programmes
- Master of Business Administration, Software Engineering and ICT
- Master of Engineering, Software Engineering and ICT
Teachers
- Jani Ekqvist
- Mika Koivunen
Groups
-
YICTTK21
-
YICTIK21
Objective
After completing the course, the student is able to:
-list the phases of information security risk management process
-give examples of different information security risk assessment methods
-analyze the results of information security risk assessment
-construct a privacy policy
-protect his/her privacy in electronic data communication
Content
On risk management
-the basic principles of information security risk assessment and risk management
-different approaches to classify information security risks
-organization and conduction of information security risk assessment to an SME sector enterprise or similar size organization
-justified improvement proposals to mitigate information security risks.
On privacy
-regulations of data protection in Finland and in EU
-examples of the duties of personnel working with data protection and privacy
-examples of the rights to check how his/her own privacy has been protected in different environments
-planning and conducting actions required by the data and privacy protection in an SME sector enterprise or similar size organization
-assess the efficiency of these actions and give justified improvement proposals for them
Evaluation scale
H-5