PROGRAMME SYLLABUS

(This is a translation of the Swedish programme syllabus)

Masterprogram i informatik - ledning och styrning av informationssäkerhet, 120 högskolepoäng

Master's Programme in Information Systems - Information Security Management, 120 Credits

Programme code: SIL2M
Education cycle: Second cycle
Established: 04/10/2005 (CF 52-532/2005)
Approved: 04/06/2018 (ORU 2018/02814)
Valid from: Autumn semester 2019
Approved by: Faculty Board of Business, Science and Engineering
School: Örebro University School of Business

AIMS AND OBJECTIVES

General aims for second cycle education

Second-cycle courses and study programmes shall involve the acquisition of specialist knowledge, competence and skills in relation to first-cycle courses and study programmes, and in addition to the requirements for first-cycle courses and study programmes shall

  • further develop the ability of students to integrate and make autonomous use of their knowledge
  • develop the students' ability to deal with complex phenomena, issues and situations, and
  • develop the students' potential for professional activities that demand considerable autonomy, or for research and development work.

(Higher Education Act, Chapter 1, Section 9)

Objectives for the programme

DEGREE OF MASTER (120 credits)
Knowledge and understanding
For a Master of Science (120 credits) the student shall

  • demonstrate knowledge and understanding in the main field of study, including both broad knowledge of the field and a considerable degree of specialised knowledge in certain areas of the field as well as insight into current research and development work, and
  • demonstrate specialised methodological knowledge in the main field of study.

Competence and skills
For a Master of Science (120 credits) the student shall

  • demonstrate the ability to critically and systematically integrate knowledge and analyse, assess and deal with complex phenomena, issues and situations even with limited information
  • demonstrate the ability to identify and formulate issues critically, autonomously and creatively as well as to plan and, using appropriate methods, undertake advanced tasks within predetermined time frames and so contribute to the formation of knowledge as well as the ability to evaluate this work
  • demonstrate the ability in speech and writing both nationally and internationally to report clearly and discuss his or her conclusions and the knowledge and arguments on which they are based in dialogue with different audiences, and
  • demonstrate the skills required for participation in research and development work or autonomous employment in some other qualified capacity.

Judgement and approach
For a Master of Science (120 credits) the student shall

  • demonstrate the ability to make assessments in the main field of study informed by relevant disciplinary, social and ethical issues and also to demonstrate awareness of ethical aspects of research and development work
  • demonstrate insight into the possibilities and limitations of research, its role in society and the responsibility of the individual for how it is used, and
  • demonstrate the ability to identify the personal need for further knowledge and take responsibility for his or her ongoing learning.

(Appendix 2, Higher Education Ordinance)

COURSES WITHIN THE PROGRAMME

  • Informatics, Introduction to Information Security, Second, second cycle, 7.5 credits (A1N)
  • Informatics, Regulatory Aspects of Information Security, second cycle, 7.5 credits (A1N)
  • Informatics, Social Aspects of Information Security, second cycle, 7.5 credits (A1N)
  • Informatics, Introduction to IT Security, second cycle, 7.5 credits (A1N)
  • Informatics, Applied Information Security Management, second cycle, 12 credits (A1F)
  • Informatics, Setting Requirements for Information Security, second cycle, 7.5 credits (A1N)
  • Informatics, Information Security Management - Application Areas, second cycle, 10.5 credits (A1F)
  • Informatics, Information Systems Theories, second cycle, 7.5 credits (A1F)
  • Informatics, Qualitative Methods in Information Systems Research, second cycle, 7.5 credits (A1F)
  • Informatics, Quantitative Methods in Information Systems Research, second cycle, 7.5 credits (A1F)
  • Informatics, Professional and Academic Communication, second cycle, 7.5 credits (A1N)
  • Informatics, Thesis, second cycle, 30 credits (A2E)

GENERAL ORGANISATION OF THE PROGRAMME

The programme comprises 120 credits distributed over two years. It provides in-depth studies within the information security management field and comprises both theoretical and practical elements.

The programme opens with an introduction to the field with the course Introduction to Information Security (7.5 credits). The aim of this course is for the students to develop a basic understanding of information security and the central concepts and responsibilities within the field. To create conditions for adequate information security and prevent incidents, organisations combine various security measures. These may be of a regulatory, social or technical nature. Therefore, three courses organised around these types of information security measures follow next: Regulatory Aspects of Information Security (7.5 credits), Social Aspects of Information Security, second cycle (7.5 credits) and Introduction to IT Security (7.5 credits). The first of these discusses how information security is created by means of legislation, policies and regulations. The second course focuses on the way in which employees' knowledge and awareness of information security can contribute to a higher degree of information security. The third course is an introduction to how software and hardware can be used to create information security.

The second semester of the programme focuses on ways in which an organisation can apply a systematic approach to information security management. The first course of the semester, Applied Information Security Management (12 credits), discusses management systems for information security. A management system is the management's tool to safeguard that the operations are carried out in a way that is consistent with its identified goals; in this case a support for systematic planning, development, follow-up and evaluation of the quality of the organisation's information security efforts. The second course, Setting Requirements for Information Security (7.5 credits), focuses on the way in which the client defines and follows up information security criteria requirements in the development and procurement of information systems. During the final course of the semester, Information Security Management - Application Areas (10.5 credits), students apply the knowledge they have obtained to a real-life information security problem.

The second year aims at allowing students to develop their knowledge of and skills in research and investigation work; providing them with the ability to identify and meet their need for knowledge; and allowing them to develop their ability to communicate the knowledge obtained and developed. Moreover, the second year aims at providing the students with an increased ability to reflect on research and investigation activities within the IT field. The second year is important, not only for students who opt to pursue a doctoral degree, but also for those who, in different ways, would like to work with the management, development or evaluation of information security. The third semester opens with the course Information Systems Theories (7.5 credits), which discusses what theories are and how they can be used as a tool of analysis or design in relation to information security. Next are two courses on investigation methodology, relevant to both research and investigation concerning information security: Qualitative Methods in Information Systems Research (7.5 credits) and Quantitative Methods in Information Systems Research (7.5 credits). The semester closes with the course Professional and Academic Communication (7.5 credits), discussing the communication of investigation results to both practicians and researchers. Students spend the fourth semester taking the course Thesis (30 credits), during which the students complete an independent project.

QUALIFICATIONS

Degree of Master (120 credits)
A Master of Science (120 credits) is awarded after the student has completed the courses required to gain 120 credits, including at least 90 credits on the second cycle, of which at least 60 credits are for specialised study in a main field of study (courses labelled A1N/A1F/A1E and A2E) and at least 30 credits are for an independent project (degree project) with the label A2E.

In addition, the student is required to have completed a Degree of Bachelor, a Degree of Bachelor of Fine Arts, a professional qualification of at least 180 credits, or a corresponding qualification from abroad.

ADMISSION REQUIREMENTS

A first-cycle qualification comprising at least 180 credits, of which at least 90 are for progressively specialised study within either of the main fields of study informatics, computer science or business administration. The applicant must also have qualifications corresponding to the course "English 6" or "English B" from the Swedish upper secondary school.

In order to gain admission to courses within the programme, other admission requirements than the above may apply. Such requirements are prescribed in the current course syllabuses.

SELECTION AND GUARANTEED ADMISSION

Number of credits obtained no later than by the application deadline.

Students admitted to the programme are guaranteed admission to the courses within the programme to the extent and scope that is defined in the programme syllabus. Guaranteed admission applies to no more than 30 credits per semester and is conditional to the student meeting the specific admission requirements.

OTHER PROVISIONS

The language of instruction is English.

Part of the programme is provided in the form of distance education.

Provisions for the individual courses within the programme are set out in the respective course syllabuses. Information on regulations concerning first and second-cycle courses and study programmes (e.g. admission, examination, credit transfer and degrees as well as delegations), can be found at Örebro University's homepage: https://www.oru.se.

TRANSITIONAL PROVISIONS

Information

Students who have been accepted to and registered on the programme have the right to complete their studies in accordance with the programme syllabus in force at their admission and at the rate of study that applied at the time of their admission.

Students who have been granted the right to take up their studies following an approved leave from studies have the right to continue their studies in accordance with the programme syllabus in force at the time of their admission.

Provisions concerning the right to examination on courses that have been altered or discontinued are laid down in the respective course syllabus or in a separate decision.