You are here

Data Security

Data Security

Code: ICT4TF022
Scope: 5cr (135h)
Timing: 3rd semester
Language: English
Course level:  Professional studies
Course type:  Elective

Starting Level and linkage with other courses
Student has completed the course Orientation to ICT Infrastructures, ICT1TF010 and Server Technologies, ICT4TF021

Learning objectives
Upon successful completion of this course, the student should be able to

  • understand the needs of enterprise information security and the importance of risk management

  • be familiar with the laws and regulations related to information security

  • identify company's security risks

  • know the company's security policies

  • protect against security risks

Course content
Topics to be covered in the course include the following:

  • Security and Risk Management

  • Protection of information assets

  • Security Engineering

  • Communications and Network Security

  • Identity and Access Management

  • Security Assessment and Testing

  • Security Operations

  • Security in the Software Development

  • OWASP

Working life connections
Guest lectures are organized if feasible.

Internationality
All course material is provided in English. Possible guest lecturers from international companies.

Teaching and learning methods

  • Teaching 48 h

  • Independent study 87 h

  • The assessment of one’s own learning 1 h

  • Studying includes lectures and exercises

Accreditation of prior learning (APL)
Accreditation of prior learning (APL) is observed on the course according to separate instructions.

Teacher(s) responsible
Olavi Korhonen

Course material

  • The course web pages

  • Online material

  • Mark Ciampa: CompTIA Securtiy+ SY0-401 in Depth,  Cengage Learning PTR, 2014. (Safari Books Online)

  • Adam Gordon: Official (ISC)2 Guide to the CISSP CBK, CRC Press, 2015. (Safari Books Online)

Assessment
Accepted course is evaluated with grades 1 to 5.

Grade 1 (40%)

  • Knows the basic concepts of network security.

  • Understands the importance of information security to the corporation.

  • Knows the basics of information security practices.

  • Manages the basics of using information security tools.

Grade 3 (70%)

  • Knows the information security concepts well

  • Able to perceive how the various information security areas are related to the company's operations.

  • Manages security practices well

  • Able to use information security tools independently

Grade 5 (90%)

  • Knows the information security concepts in depth.

  • Able to define and analyze the security requirements resulting from the activities of the company.

  • Able to develop security practices.

  • Knows how to use information security tools excellently.

Assessment components and their respective weights

  • Assignments or projects 50%

  • Examination 50%

The assessment of one's own learning does not influence the course grade. The assignment is the same for all courses or modules and the answers will also be used for course or module development. The assignment is completed on an electronic form.