University of London

Small Navigation Menu

Primary Menu

Security management

IYM001

This module will emphasise the need for good security management. Its aims are to identify the problems associated with security management and to show how various major organisations solve those problems.

Topics covered

  • Risk assessment and risk management
  • Audit
  • Law and regulation
  • Business continuity planning
  • Internal control
  • Standards (including the ISO 27000 family of standards)
  • Policy and procedure
  • Trust and communication

Learning outcomes

If you complete the course successfully, you should be able to:

  • Explain the fundamentals of security management
  • Appreciate its main complexities
  • See how some companies attempt to solve these problems.

Assessment

This module is assessed by a two hour unseen written examination.

Essential reading

  • David Sutton et al., Principles of information security management
  • Mark Neocleous, Critique of Security