Information Security Consulting

Subject ISYS90070 (2015)

Note: This is an archived Handbook entry from 2015.

Credit Points: 12.5
Level: 9 (Graduate/Postgraduate)
Dates & Locations:

This subject has the following teaching availabilities in 2015:

June, Parkville - Taught on campus.
Pre-teaching Period Start not applicable
Teaching Period 20-Jun-2015 to 25-Jul-2015
Assessment Period End 31-Aug-2015
Last date to Self-Enrol 26-Jun-2015
Census Date 10-Jul-2015
Last date to Withdraw without fail 07-Aug-2015

Timetable can be viewed here. For information about these dates, click here.
Time Commitment: Contact Hours: 36 hours in June/July
Total Time Commitment:

200 hours





Recommended Background Knowledge:


Non Allowed Subjects:


Core Participation Requirements:

For the purposes of considering request for Reasonable Adjustments under the Disability Standards for Education (Cwth 2005), and Students Experiencing Academic Disadvantage Policy, academic requirements for this subject are articulated in the Subject Overview, Objectives, Assessment and Generic Skills sections of this entry.

It is University policy to take all reasonable steps to minimise the impact of disability upon academic study, and reasonable adjustments will be made to enhance a student's participation in the University's programs. Students who feel their disability may impact on meeting the requirements of this subject are encouraged to discuss this matter with a Faculty Student Adviser and the Disability Liaison Unit:



Subject Overview:


This subject introduces a range of information security consulting services typically provided by leading management consultants in industry. The subject will cover the fundamental principles and practice of security risk assessment, incident response and disaster recovery, knowledge leakage, systems and network security, and policy and culture. Students will develop an appreciation for the kinds of consulting services that can be developed and marketed to industry in each of these areas. Consulting techniques in proposal writing, pricing, and marketing to prospective clients will also be discussed.

This subject supports course-level objectives by allowing students to have in-depth knowledge of the specialist area of information security management. The subject’s assessment tasks include the writing of a comprehensive consulting proposal and research into critical security issues faced by organizations. These tasks will encourage students to work in a team to develop a high-level of achievement in writing, research activities, and presentation skills.

Indicative Content

Security principles and techniques discussed are: Models for understanding knowledge leakage, Security Risk Assessment Methods including OCTAVE, Firewall and VPN security scenarios, SANS Incident Response Methodology. Real world cases will be drawn from a range of organization types including critical infrastructure installations in Australia.

Learning Outcomes:

Intended Learning Outcomes (ILOs)

On completion of this subject the student is expected to:

  1. Identify a range of opportunities for information security consulting in organizations
  2. Develop and document a competitive business proposal to undertake information security consulting services inside an organization
  3. Describe a high-level strategy for managing an organization’s information security issues
  4. Appreciate the critical role of information security in organizations and the controls available for enforcement
  1. A 20 minute group (5 to 6 students) seminar presentation of a research paper (10%), requiring approximately 13-15 hours of work per student. Addresses Intended Learning Outcomes (ILOs) 3 & 4.
  2. A group (5 to 6 students) seminar paper of 3,000 words (20%), requiring approximately 25-30 hours of work per student. Addresses ILOs 3 & 4.
  3. A 10 minute group (5 to 6 students) presentation of the seminar paper in #2 (10%), requiring approximately 13-15 hours of work per student. Addresses ILOs 3 & 4.
  4. Demonstration of individual expertise in class discussions (10%), requiring approximately 13-15 hours of work. Addresses ILO 4.
  5. An individual consulting proposal of up to 4,000 words (50%), requiring approximately 50-60 hours of work. Addresses ILOs 1 & 2.
Prescribed Texts:


Recommended Texts:

A range of readings will be provided during the course, including current articles and reports.

Breadth Options:

This subject is not available as a breadth subject.

Fees Information: Subject EFTSL, Level, Discipline & Census Date
Generic Skills:

On completion of this subject, students should have developed the following generic skills:

  • Have in-depth knowledge of a specialist area through exposure and study of information security areas of knowledge
  • Reach a high level of achievement in writing, research or project activities problem-solving and communication through the writing of a comprehensive consulting proposal
  • Team-work, through working on a group project.
  • Report-writing skills
  • Presentation skills

Learning and Teaching Methods

The subject is delivered over three weekends in 6 hour classes where each class contains a series of lecture presentations, collaborative discussion and activities, and self-study of research related articles.

Indicative Key Learning Resources

Students will have access to lecture slides as well as a range of research articles and real-world cases will be provided through the subject LMS site.

Careers/Industry Links

This subject is relevant to students pursuing management consulting careers as well as IT professionals in general. Students will be studying real-world security challenges to organizations and developing realistic consulting proposals. The lecturer is formerly a security consultant and guest speakers from industry will also be invited.

Related Course(s): Master of Information Systems
Master of Information Systems
Master of Information Systems
Master of Philosophy - Engineering
Ph.D.- Engineering
Related Majors/Minors/Specialisations: MIS Professional Specialisation
MIS Research Specialisation

Download PDF version.