Information security risk management & Privacy (5 cr)
Code: MS00BP20-3003
General information
- Enrollment
-
30.04.2022 - 12.09.2022
Registration for the implementation has ended.
- Timing
-
05.09.2022 - 31.12.2022
Implementation has ended.
- Number of ECTS credits allocated
- 5 cr
- Local portion
- 5 cr
- Mode of delivery
- Contact learning
- Unit
- Engineering and Business
- Teaching languages
- Finnish
- Degree programmes
- Master of Engineering, Software Engineering and ICT
- Master of Business Administration, Software Engineering and ICT
- Teachers
- Mika Koivunen
- Course
- MS00BP20
Evaluation scale
H-5
Objective
After completing the course, the student is able to:
-list the phases of information security risk management process
-give examples of different information security risk assessment methods
-analyze the results of information security risk assessment
-construct a privacy policy
-protect his/her privacy in electronic data communication
Content
On risk management
-the basic principles of information security risk assessment and risk management
-different approaches to classify information security risks
-organization and conduction of information security risk assessment to an SME sector enterprise or similar size organization
-justified improvement proposals to mitigate information security risks.
On privacy
-regulations of data protection in Finland and in EU
-examples of the duties of personnel working with data protection and privacy
-examples of the rights to check how his/her own privacy has been protected in different environments
-planning and conducting actions required by the data and privacy protection in an SME sector enterprise or similar size organization
-assess the efficiency of these actions and give justified improvement proposals for them