Use the Tab and Up, Down arrow keys to select menu items.
This course covers the processes involved in the management of computer/network systems including security policies, risk assessment, management, certification and accreditation, system audit, and security in two-party outsource arrangements.
COSC430 builds on Section 1 of COSC332: Data and Network Security through a combination of case studies of information security management issues, incidents and examples, plus research and application of current best practices and standards. The focus of this course is on management processes and the business context of information security. It touches on a number of technical areas but does not require the student to have in-depth technical experience in systems development or administration.• Assessing and managing security risks• Developing security policies and plans• Evaluating, validating and certifying the security of IT operations and systems• User authentication and privilege management• Ongoing security management and governance• International standards and requirements, including ISO/IEC17799: Information Security Management, COBIT and Sarbanes-Oxley.• Managing for changes in technologies, environments and business needs.
Subject to Head of Department approval.
Ray Hunt
Jay Garden (High-Ground Information Security)
Library portalCosc430 Home
Domestic fee $737.00
International Postgraduate fees
* All fees are inclusive of NZ GST or any equivalent overseas tax, and do not include any programme level discount or additional course-related expenses.
For further information see Computer Science and Software Engineering .