Students
COMP8300 – Security Management
2021 – Session 2, Special circumstances
Session 2 Learning and Teaching Update
The decision has been made to conduct study online for the remainder of Session 2 for all units WITHOUT mandatory on-campus learning activities. Exams for Session 2 will also be online where possible to do so.
This is due to the extension of the lockdown orders and to provide certainty around arrangements for the remainder of Session 2. We hope to return to campus beyond Session 2 as soon as it is safe and appropriate to do so.
Some classes/teaching activities cannot be moved online and must be taught on campus. You should already know if you are in one of these classes/teaching activities and your unit convenor will provide you with more information via iLearn. If you want to confirm, see the list of units with mandatory on-campus classes/teaching activities.
Visit the MQ COVID-19 information page for more detail.
General Information
Download as PDF
| Unit convenor and teaching staff |
Unit convenor and teaching staff
Milton Baar
|
|---|---|
| Credit points |
Credit points
10
|
| Prerequisites |
Prerequisites
ITEC602 or COMP6770
|
| Corequisites |
Corequisites
|
| Co-badged status |
Co-badged status
|
| Unit description |
Unit description
The intent of this unit is to provide students with a working knowledge of commercial information security governance requirements, tools and techniques. The unit has a practical focus with tutorial and laboratory work that will include aspects of physical security and hacking, information security architectures and the creation of a dummy company on which the tools and techniques will be developed and tested. Topics include an introduction to information security, standard and governance, risk management concepts, security threats, controls, practical hacking, server hardening, evidence collection, business community planning and DRP, creating an enterprise information security framework, and EISF/ISMS certification. |
Important Academic Dates
Information about important academic dates including deadlines for withdrawing from units are available at https://www.mq.edu.au/study/calendar-of-dates
Learning Outcomes
On successful completion of this unit, you will be able to:
- ULO1: Describe and explain the differences between security frameworks and standards
- ULO2: Describe and demonstrate how to manage commercial risk, and unmitigated and mitigated risk
- ULO3: Identify and assess commercial threats and types of threats and statutory requirements in a commercial environment
- ULO4: Identify and analyse basic risk management errors and information exposures; assess various techniques and their suitability as controls
General Assessment Information
- Group work is an essential component of the teaching model of this unit. During week 1, students will self-select groups to join and the group size will be confirmed by the Convenor at the end of week 1.
- Each Group must keep detailed "realtime" notes of discussions, decisions and activities from weeks 2-12 and these notes will be assessed in weeks 7 and 13.
- The Industry Presentation on Saturday 6-NOV-2021 is compulsory and each student must be available to complete this assessment. The assessment is a Group Presentation using Zoom to an external panel of Industry Experts, the presentation will take between 30-45 minutes and will be in the form of a Group presentation followed by questions from the Industry Panel.
- There is no written exam.
Assessment Tasks
| Name | Weighting | Hurdle | Due |
|---|---|---|---|
| Quiz 1 | 10% | No | Week 5 |
| Mid-semester workbook assessment | 40% | No | Week 7 |
| Quiz 2 | 10% | No | Week 9 |
| Industry Presentation | 40% | Yes | 6/11/2021 |
Quiz 1
Assessment Type 1: Quiz/Test
Indicative Time on Task 2: 10 hours
Due: Week 5
Weighting: 10%
A multiple choice quiz covering material from weeks 1-4
On successful completion you will be able to:
- Describe and explain the differences between security frameworks and standards
- Describe and demonstrate how to manage commercial risk, and unmitigated and mitigated risk
- Identify and assess commercial threats and types of threats and statutory requirements in a commercial environment
- Identify and analyse basic risk management errors and information exposures; assess various techniques and their suitability as controls
Mid-semester workbook assessment
Assessment Type 1: Practice-based task
Indicative Time on Task 2: 40 hours
Due: Week 7
Weighting: 40%
Review and assessment of the workbook content that contains results from group tasks undertaken from weeks 1-7.
On successful completion you will be able to:
- Describe and explain the differences between security frameworks and standards
- Describe and demonstrate how to manage commercial risk, and unmitigated and mitigated risk
- Identify and assess commercial threats and types of threats and statutory requirements in a commercial environment
- Identify and analyse basic risk management errors and information exposures; assess various techniques and their suitability as controls
Quiz 2
Assessment Type 1: Quiz/Test
Indicative Time on Task 2: 10 hours
Due: Week 9
Weighting: 10%
A short-answer quiz covering material from weeks 4-8
On successful completion you will be able to:
- Describe and demonstrate how to manage commercial risk, and unmitigated and mitigated risk
- Identify and assess commercial threats and types of threats and statutory requirements in a commercial environment
- Identify and analyse basic risk management errors and information exposures; assess various techniques and their suitability as controls
Industry Presentation
Assessment Type 1: Viva/oral examination
Indicative Time on Task 2: 40 hours
Due: 6/11/2021
Weighting: 40%
This is a hurdle assessment task (see assessment policy for more information on hurdle assessment tasks)
Presentation of completed tasks to an external panel of Industry Experts
On successful completion you will be able to:
- Describe and explain the differences between security frameworks and standards
- Describe and demonstrate how to manage commercial risk, and unmitigated and mitigated risk
- Identify and assess commercial threats and types of threats and statutory requirements in a commercial environment
- Identify and analyse basic risk management errors and information exposures; assess various techniques and their suitability as controls
1 If you need help with your assignment, please contact:
- the academic teaching staff in your unit for guidance in understanding or completing this type of assessment
- the Writing Centre for academic skills support.
2 Indicative time-on-task is an estimate of the time required for completion of the assessment task and is subject to individual variation
Delivery and Resources
This unit is delivered online using Zoom at the address https://macquarie.zoom.us/j/95929596500 and not on-campus; there are two delivery components:
- weekly lectures, and
- weekly workshops held Tuesdays from 1600-1800, using Zoom and starting in Week 02.
The Week 1 Lecture is delivered on Tuesday 1300 using Zoom and during Week 1, an online poll is available on iLearn so students can choose if the lectures from Weeks 2-13 should be :
- "live with realtime student participation" on Tuesdays 1300-1500, or
- pre-recorded and available for download before the weekly workshop and no Zoom lecture provided from 1300-1500.
Policies and Procedures
Macquarie University policies and procedures are accessible from Policy Central (https://policies.mq.edu.au). Students should be aware of the following policies in particular with regard to Learning and Teaching:
- Academic Appeals Policy
- Academic Integrity Policy
- Academic Progression Policy
- Assessment Policy
- Fitness to Practice Procedure
- Grade Appeal Policy
- Complaint Management Procedure for Students and Members of the Public
- Special Consideration Policy
Students seeking more policy resources can visit Student Policies (https://students.mq.edu.au/support/study/policies). It is your one-stop-shop for the key policies you need to know about throughout your undergraduate student journey.
To find other policies relating to Teaching and Learning, visit Policy Central (https://policies.mq.edu.au) and use the search tool.
Student Code of Conduct
Macquarie University students have a responsibility to be familiar with the Student Code of Conduct: https://students.mq.edu.au/admin/other-resources/student-conduct
Results
Results published on platform other than eStudent, (eg. iLearn, Coursera etc.) or released directly by your Unit Convenor, are not confirmed as they are subject to final approval by the University. Once approved, final results will be sent to your student email address and will be made available in eStudent. For more information visit ask.mq.edu.au or if you are a Global MBA student contact globalmba.support@mq.edu.au
Student Support
Macquarie University provides a range of support services for students. For details, visit http://students.mq.edu.au/support/
Learning Skills
Learning Skills (mq.edu.au/learningskills) provides academic writing resources and study strategies to help you improve your marks and take control of your study.
The Library provides online and face to face support to help you find and use relevant information resources.
Student Services and Support
Students with a disability are encouraged to contact the Disability Service who can provide appropriate help with any issues that arise during their studies.
Student Enquiries
For all student enquiries, visit Student Connect at ask.mq.edu.au
If you are a Global MBA student contact globalmba.support@mq.edu.au
IT Help
For help with University computer systems and technology, visit http://www.mq.edu.au/about_us/offices_and_units/information_technology/help/.
When using the University's IT, you must adhere to the Acceptable Use of IT Resources Policy. The policy applies to all who connect to the MQ network including students.
Unit information based on version 2021.01 of the Handbook