E Risk Assessment

Subject 360-822 (2009)

Note: This is an archived Handbook entry from 2009. Search for this in the current handbook

Credit Points: 12.50
Level: 9 (Graduate/Postgraduate)
Dates & Locations:

This subject has the following teaching availabilities in 2009:

For information about these dates, click here.
Time Commitment: Total Time Commitment: Not available
Prerequisites: None
Corequisites: None
Recommended Background Knowledge: None
Non Allowed Subjects: None
Core Participation Requirements:

For the purposes of considering request for Reasonable Adjustments under the Disability Standards for Education (Cwth 2005), and Student Support and Engagement Policy, academic requirements for this subject are articulated in the Subject Overview, Learning Outcomes, Assessment and Generic Skills sections of this entry.

It is University policy to take all reasonable steps to minimise the impact of disability upon academic study, and reasonable adjustments will be made to enhance a student's participation in the University's programs. Students who feel their disability may impact on meeting the requirements of this subject are encouraged to discuss this matter with a Faculty Student Adviser and Student Equity and Disability Support: http://services.unimelb.edu.au/disability
Subject Overview: This subject examines the role of risk driven methodologies in modern information security environments. It covers the risk management lifecycle and develops an understanding of security risk management in an organisational context. It provides the fundamental principles of information security and how security processes are implemented in organisations. It includes the concept of risk management, how to conduct risk assessments and how they can be used to better create a secure organisational environment.
Prescribed Texts: None
Breadth Options:

This subject is not available as a breadth subject.
Fees Information: Subject EFTSL, Level, Discipline & Census Date
Generic Skills: The essential elements to be covered are:-
  • the meaning of 'information security' and how modern information security management is driven by a risk-based approach
  • the need for information security in organisations including threat categories and attacks in information security
  • information security risk assessments,
  • the various stages of information security risk management including identification, analysis, evaluation and treatment
  • the role of risk standards, audits and assessments in information security management

Download PDF version.