Systems Governance (COMP60721)

The details given may be subject to change, and should be used for informational purposes only. Course Unit details can change regularly, and those given will be applicable from the current point in time, unless otherwise stated.
Credit rating
15
Unit level
Level 6
Teaching period(s)
Semester 1
Academic career
Postgraduate Taught
Offered by


Available as a free choice unit?
Yes

Course unit overview

IT Governance is the system by which the current and future use of IT is directed and controlled. IT governance involves evaluating and directing the use of IT to secure information - and the technology that is used to manage it for an organisation or the wider community. It involves engineering basic principles into the socio-technical framework of IT.

This is a course unit developed and delivered by Daniel Dresner, a graduate of Manchester Business School who works with government, industry, and the third sector to secure information systems. Over the period of the module, students are joined by a cohort of guest lecturers from industry.

Teaching staff

Teaching staff Course Unit Role
Daniel Dresner Unit coordinator

Aims

This course unit covers the coordination of business decision making for the assurance of information. It concentrates how business responsibilities consider security in strategy, acquisition, performance, conformance, and human behaviour.

Learning outcomes

  • Apply analytical techniques to steer a community out of a cyber security incident.

  • Be able to work in a team to resolve differing viewpoints to create a governance portfolio.

  • Apply structured governance techniques to acquire IT systems with security built in.

  • Comprehend the importance of leadership and the balance of decision rights and escalation paths whether that is between people or machines.

  • Be able to specify a security architecture and evaluate for vulnerabilities.

  • Be able to identify and select appropriate metrics to monitor the security of an information system.

Employability skills

Analytical skills

Group/team working

Innovation/creativity

Leadership

Project management

Oral communication

Problem solving

Research

Written communication

Syllabus

  1. Security RACI - Responsibility, Accountability, Consulted and Informed
    • Leadership
    • Managing investments
    • IT and audit working together
  2. Strategic security
    • Risk management
    • Information security
    • Implementation roadmap
    • Architectures
  3. Security during acquisition
    • The business case
    • Supplier governance
  4. Performance of security measures
    • Capability assessment
    • IT service continuity
    • Performance measurement
  5. Conformance of information systems to security obligations
    • Legal and regulatory aspects
  6. Managing the human behaviour affecting the security of information systems
    • Communications

Teaching and learning methods

Lectures

70% of contact time will be lectures.

Laboratories

30% of contact time will be group work in the lab.

Assessment methods

Written assignment (inc essay) 100%

Feedback methods

This is an interactive module with in-class sessions and an on-line discussion board that operates through the week to keep up the pace between contact days.

Study hours

Scheduled activity hours
0
Placement hours
0
Independent study hours 150

Pre/co-requisites

Unit Code Title Type Required?

Additional notes

Back to Course Units

Attachments

(optional)

(optional)