- Κωδικός / Course Code: SEC112
- ECTS: 10
- Τρόποι Αξιολόγησης / Assessment: Interactive Activities (20%), Two assignments (30%), Final exam (50%)
- Διάρκεια Φοίτησης/ Length of Study: Εξαμηνιαία (χειμερινό) / Semi-annual (fall)
- Κόστος/ Tuition Fees: €775
- Επίπεδο Σπουδών/ Level: Μεταπτυχιακό/ Postgraduate
- Προαπαιτούμενα/ Prerequisites: HCI511, HCI512
- Αναλυτική πληροφόρηση: SEC112_ECTS_en.pdf
Information Security Management aims to provide theoretical and practical knowledge for the evaluation and management of security and related risks in information and communication systems.
As part of the course framework, fundamental concepts and practices that are applied in cybersecurity governance, with a focus on risk management and assessment methodologies, are presented.
The module covers the following subject areas:
- Security governance
- Risk management and assessment methodologies
- Security policy design
- Contingency planning
- Cybersecurity culture development
- Legislative framework and standards
Module content
- Introduction to Information Security Management concepts
- Overview of risk management
- ISO 2700x standards, NIST SP 800-30
- Risk identification – Threat modelling
- Risk identification – Vulnerability assessment
- Risk analysis and evaluation
- Risk analysis and evaluation
- Risk treatment
- OCTAVE Methodology
- Building a cybersecurity culture
- Security policies and contingency planning
- Personal data protection- Legal Framework (I)
- Personal data protection- Legal Framework (II)
- Revision