UC3EIC10 Information Systems Control
UC3EIC10 Information Systems Control
- Course description
- NQF LevelBachelor's degree (Level 6 1. Cycle)
- Area of StudyComputing
- Program of StudyDigital Assurance and Security Management
- ECTS10
- CampusOnlinePLUS - Oslo, Online
- Course LeaderPiet Delport
Language of Instruction and assessment: English
May be offered on Campus and Online.
May be offered as a separate course.
Included in the following bachelor's degrees:
- Digital Assurance and Security Management
The course aims to use risk management techniques and to understand and manage organisational IT risks. To impart the technical knowledge to implement and maintain information system (IS) controls in order to reduce organisational IT risks.
Course Learning Outcomes
The student has knowledge of
| K1 | IT risk identification and management. |
|---|---|
| K2 | advanced risk assessment techniques. |
| K3 | risk response and mitigation. |
| K4 | risk and control monitoring and reporting. |
The student gain skills in
| S1 | analysis of risk scenarios. |
|---|---|
| S2 | applying risk assessment techniques. |
| S3 | documenting risk assessments. |
| S4 | recommending risk response and mitigation strategies. |
| S5 | aligning risk response with business objectives. |
| S6 | define suitable key risk indicators (KRI) for a given context. |
The student can demonstrate
| G1 | communicating the importance of Information Systems control regarding risk management to stakeholders. |
|---|---|
| G2 | systematically approaching complex tasks of addressing risks with adequate Information Systems control. |
- Risk governance and enterprise alignment
- Advanced risk assessment approaches
- Tailored risk response strategies for enterprise objectives
- Controls design and implementation techniques
- Risk monitoring and reporting
- Principles of IT and security principles in IT risk management
- Teaching will be based on a hybrid-flexible approach. Instructor-led face-to-face learning is combined with online learning in a flexible course structure that gives students the option of attending sessions in the classroom, participating online, or doing both.
- All activities require active student participation in their own learning.
- Learning delivery methods and available resources will be selected to ensure constructive alignment with course content, learning outcomes and assessment criteria.
- Students will be taught using a mixture of guidance, self-study, and lecture material. Topics will be introduced in a series of weekly lectures. The guidance sessions will be directed practical exercises and reading in which students can explore topics with support from a teacher. This material will also require students to self-manage their time to ensure tasks are completed and the theory is fully understood. This will allow the students to fully engage with lectures and with their peers.
- Learning resources are available in the LMS and include, but is not limited to:
- literature and online reading material (essential and recommended)
- streams, recordings and other digital resources, where applicable
- video conferencing and communication platforms, if applicable
- tools, software and libraries, where applicable
- Students must have access to an internet connection, and suitable hardware.
- Accessing live streams and virtual laboratories requires a minimum broadband connection of 2Mbps (4Mbps recommended).
- Students working on their own laptop/computer are required to acquire appropriate communications software, e.g., webcam, microphone, headphones.
UC2IRM10 IT Risk Management, or equivalent course(s).
The reading list for this course and any additional electronic resources will be provided in the LMS.
| Activity | Duration |
|---|---|
Teacher-led activity | 24 |
Teacher-supported work | 60 |
Self-study | 166 |