Unit Outline

This unit explores cybersecurity as it is managed in the business context. It covers the processes of threat and risk analysis, security policy development, incident prevention and response, issues around privacy, professional codes of conduct, and looks at legislative efforts around the world intended to address privacy and cybersecurity issues. It also looks at the ethical issues that cybersecurity research raises, and the ways that this affects how cybersecurity researchers can operate.

Intended Learning Outcomes

As per the Assessment and Results Policy 1.3, your results will reflect your achievement against specified learning outcomes.

On completion of this unit, you will be able to:


1.	Analyse industry approaches to cybersecurity practices as they relate to privacy and the law
2.	Investigate and communicate effective policies and processes designed to improve an organisation's cybersecurity posture
3.	Develop a cohesive security policy for a company that meets their threat and risk profile
4.	Discuss the ethical issues that cybersecurity researchers face to assess the ethicality of given scenarios

Alterations as a result of student feedback

Nil.

Teaching arrangements


ATTENDANCE MODE	TEACHING TYPE	LEARNING ACTIVITY	CONTACT HOURS	FREQUENCY
On Campus	Tutorial	A structured real-time (i.e. synchronous) activity in a small-group setting where the primary purpose is the clarification, exploration or reinforcement of subject content presented or accessed at another time or place (e.g. lecture, preparatory work). It is reliant on student-teacher and student-student interaction and dialogue for achievement of its learning outcomes. The students enrolled in the tutorial are expected to attend.	2	Weekly
Online	Lecture (Online)	A real-time (i.e. synchronous) interactive activity involving the whole class whose primary purpose is the presentation and structuring of information/ideas/skills to facilitate student learning. All students are expected to attend.	2	Weekly
Online	Individual Study	Involving reading, listening to audio, watching video, and/or completing exercises and/or quizzes, self-study is individual work undertaken when the student chooses (i.e. asynchronous), most likely through engagement with MyLO. The content is examinable, and may need to be completed prior to attending classes and/or attempting assessment tasks.	1	Weekly

Attendance / engagement expectations

If your unit is offered On campus, it is expected that you will attend all on-campus and onsite learning activities. This is to support your own learning and the development of a learning community within the unit. If you are unable to attend regularly, please discuss the situation with your course coordinator and/or our UConnect support team.

If your unit is offered Online, it is expected you will engage in all those activities as indicated in the Unit Outline, including any self-directed learning.

If you miss a learning activity for a legitimate reason (e.g., illness, carer responsibilities) teaching staff will attempt to provide alternative activities (e.g., make up readings) where it is possible.

How will I be Assessed?

For more detailed assessment information please see MyLO.

Assessment schedule


ASSESSMENT TASK #	ASSESSMENT TASK NAME	DATE DUE	WEIGHT	LINKS TO INTENDED LEARNING OUTCOMES
Assessment Task 1:	Research on cybersecurity	Week 8	15 %	LO1, LO2, LO3
Assessment Task 2:	Risk assessment and Cybersecurity policy writing	Week 13	30 %	LO1, LO2, LO3
Assessment Task 3:	End of unit test	Exam Period	40 %	LO1, LO2, LO3, LO4
Assessment Task 4:	Research and Case studies during Tutorials	Refer to Assessment Description	15 %	LO2, LO3, LO4

Assessment details

Assessment Task 1: Research on cybersecurity

Task Description:

This assessment item is a written task and involves research on current cybersecurity topics. A wide range of cases could be chosen, and the student will discuss and examine the issues based on their thoughts and understanding of the area.

Task Length:

2000 words

Due Date:

Week 8

Weight:

15 %

CRITERION #

CRITERION

MEASURES INTENDED

LEARNING OUTCOME(S)


1	Analyse and research business needs with respect to security	LO1, LO2
2	Explore risks and threats to the business	LO1, LO3
3	Prepare risk assessment for business	LO2, LO3

Assessment Task 2: Risk assessment and Cybersecurity policy writing

Task Description:

Working as a group, students will analyse a small to medium enterprise case study to research potential security threats and risks through a formal risk assessment process.
Based on the assessment, students will design and write cybersecurity policies.
The work also includes an incident response.

Task Length:

10,000 words

Due Date:

Week 13

Weight:

30 %

CRITERION #

CRITERION

MEASURES INTENDED

LEARNING OUTCOME(S)


1	Analyse and research business needs with respect to security	LO1, LO2
2	Produce a viable security policy according to business requirements	LO3
3	Explore security improvements for a business	LO2

Assessment Task 3: End of unit test

Task Description:

Students will complete an online MyLO test to confirm their individual knowledge of industry standard policies and practices related to cybersecurity.

Task Length:

2 hours

Due Date:

Exam Period

Weight:

40 %

CRITERION #

CRITERION

MEASURES INTENDED

LEARNING OUTCOME(S)


1	Explain cybersecurity concepts	LO1, LO2
2	Develop security policies for specific scenarios	LO1, LO3
3	Discuss ethical issues in cybersecurity research	LO4

Assessment Task 4: Research and Case studies during Tutorials

Task Description:

In each tutorial, students will work in groups to analyse and develop policies and practices related to security.

Task Length:

12 Tutorials, 3 quizzes

Due Date:

Refer to Assessment Description

Weight:

15 %

CRITERION #

CRITERION

MEASURES INTENDED

LEARNING OUTCOME(S)


1	Analyse and research business needs with respect to security	LO2
2	Write security policies relevant to business needs	LO3
3	Research and explain ethical issues in cybersecurity research	LO4

How your final result is determined

To pass this unit, you need to demonstrate your attainment of each of the Intended Learning Outcomes, achieve a final unit grade of 50% or greater, and pass any hurdle tasks.

Submission of assignments

Where practicable, assignments should be submitted to an assignment submission folder in MYLO. You must submit assignments by the due date or receive a penalty (unless an extension of time has been approved by the Unit Coordinator). Students submitting any assignment in hard copy, or because of a practicum finalisation, must attach a student cover sheet and signed declaration for the submission to be accepted for marking.

Requests for extensions

If you are unable to submit an assessment task by the due date, you should apply for an extension.

A request for an extension should first be discussed with your Unit Coordinator or teaching support team where possible. A request for an extension must be submitted by the assessment due date, except where you can provide evidence it was not possible to do so. Typically, an application for an extension will be supported by documentary evidence: however, where it is not possible for you to provide evidence please contact your Unit Coordinator.

The Unit Coordinator must notify you of the outcome of an extension request within 3 working days of receiving the request.

Late penalties

Assignments submitted after the deadline will receive a late penalty of 5% of the original available mark for each calendar day (or part day) that the assignment is late. Late submissions will not be accepted more than 10 calendar days after the due date, or after assignments have been returned to other students on a scheduled date, whichever occurs first. Further information on Late Penalties can be found on the Assessments and Results Procedure.

Review of results and appeals

You are entitled to ask for a review of the marking and grading of your assessment task if there is an irregularity in the marking standards or an error in the process for determining the outcome of an assessment. Details on how to request a review of a mark for an assignment are outlined in the Review and Appeal of Academic Decisions Procedure.