IT Risk Management
Testimonials
Aleksandra Shcherbakova
Master of Management
“I have met some truly impressive talents and kind personalities among our lecturers."
Angelica Balajadia
Master of Management
“I have found my people here, I have networked here. I am open to doors opening and so many doors are opening already."
Wiranpatchara (Sandy) Wongchanapai
Master of International Business
"Whilst studying at ICMS, I was able to have a strong work/study life balance".
Cameron Colvin
Bachelor of Business (Marketing)
"My work experience boosted my confidence and allowed me to apply theoretical knowledge in practical settings."
Taylor McLeod
Bachelor of Business (Sports Management)
“The small, intimate environment in my lectures makes me feel like I am being heard and that I am getting the most out of my studies."
Julie Williams
Bachelor of Business (Fashion and Global Brand Management)
"I chose ICMS because they have provided me with the opportunity to kickstart my career through their many industry partners".
Keegan Du Preez
Bachelor of Business Management (Accounting)
"ICMS is realistic. They understand the realistic expectations of various markets. It’s not just textbook knowledge, especially compared to every other competitor".
Michaela Mayes
Bachelor of Business (Marketing)
"ICMS' Work Integrated Learning gave me the ability to gain real life experience before I even graduated".
Alana Williams
Bachelor of Business (Accounting)
“I worked full time whilst studying, with ICMS allowing for such a great work to study ratio and balance, where I was flexibly allowed to do both.”
Juliette Wilson
Bachelor of Business (Marketing)
"I think the biggest thing is that you get a personalised experience, and you’ll be treated like a person, not a number".
Calum McKnight
Bachelor of Business (Marketing)
“Very quickly, ICMS gave me a circle of friends who are pretty driven – but who also like to have fun – and when I see where they are now it’s pretty exciting and it drives me further.”
Ewan Metcalfe
Bachelor of Business (Sports Management)
"Through being at this college and the geographical location, it always reminded me to stay grounded, keep working hard to further improve my life and stay happy".
This subject is available under ICMS undergraduate degrees, please click the button below to find an undergraduate course for you.
Subject Code:
ICT301A
Subject Type:
Core
Credit Points:
3 credit points
Pre-requisite/Co-requisite:
Course level pre-requisite: a total of 24 credit points (15 credit points, including ICT101A, ICT102A, ICT103A, DAT101A from level 100 and 9 credit points from level 200 core subjects) prior enrolling into level 300 core and specialisation subjects.
Subject Level:
300
Subject Rationale:
As an integral part of modern organisations, IT risk management is crucial in establishing robust security systems and mechanisms to safeguard valuable corporate information assets and ensure business continuity by incorporating the three fundamental facets of the overarching IT domain: people, process, and technology.
This subject equips students with disciplinary knowledge and skills in IT risk management by providing a comprehensive and rigorous exposition of industry standards, frameworks, and best practices that are applied to manage information security threats and vulnerabilities that negatively impact data confidentiality, integrity, and availability.
In this subject, students will explore emerging information security problems with the auxiliary tools and techniques that are systematically used for their holistic governance and management, contemplating business continuity measures and contingency planning. They will also examine legislative, ethical, and corporate social responsibility aspects of IT risk management, including their impact on organisations within an information security context.
Learning Outcomes:
a) Explore the concepts, principles, standards, frameworks, and regulatory provisions applied in information security risk management (ISRM) and their role in organisational governance and compliance.
b) Critically assess standard approaches to enterprise risk management in an information technology context.
c) Examine a business domain and systematically implement risk management processes, tools, and techniques to address organisational information security issues.
d) Formulate strategies and actions based on sound theory and practice in response to information security risks congruous with multifaceted internal and external organisational factors.
e) Produce ancillary ISRM resources in accordance with industry best practices pertaining to information technology functional areas.
Student Assessment:
| No | Assessment Task | Weighting | Learning Outcomes |
| 1 | Online Quiz (Invigilated) | 20% | a |
| 2 | Case Study | ||
| Part A – Risk Register | 25% | a – e | |
| Part B – Risk Treatment Plan | 20% | ||
| 3 | Incident Management Simulation (G) | ||
| Part A – Business Continuity and Disaster Recovery Plan | 20% | a, b, d, e | |
| Part B – Presentation | 15% |
Broad Topics to be Covered:
| Topic: |
Week 1: Foundations and Concepts of Risk Management
|
Week 2 – 3: Governance and Compliance:
|
Week 4 – 6: Risk Management Process: Risk Assessment
|
Week 7 – 8: Risk Management Process: Risk Treatment
|
| Week 9: Business Impact Analysis, IT Service Delivery and Incident Management |
| Week 10: Business Continuity Planning |
| Week 11: Disaster Recovery Planning |
Please note that these topics are often refined and subject to change so for up to date weekly topics and suggested reading resources, please refer to the Moodle subject page.