IS-431 Ethics, legislation, and compliance for cybersecurity

The course is connected to the following study programs

• Cybersecurity management, Master’s Programme

Teaching language

English

Course contents

The course provides an overview of relevant cybersecurity standards and guidelines, legislation, and ethical principles that guide and relate to organizational compliance. During the course, we will draw on case studies and reports to apply frameworks and theories to analyze challenges on ethics and compliance.

Learning outcomes

Upon successful completion of the course, the students will:

• have a thorough understanding of organizational compliance and how it relates to standards (e.g., ISO-27001, NIST) guidelines, legislation, and ethics.
• understand how cybersecurity relates to and gives rise to ethical concerns.
• have advanced knowledge of key cybersecurity standards and guidelines and how they can be applied in different scenarios.
• be able to analyze cybersecurity issues through legal and ethical frameworks and perspectives.
• be able to evaluate cybersecurity compliance of organizations and services.

Examination requirements

Approved mandatory presentation and assignments. More detailed information will be provided in Canvas at the start of the semester.

Teaching methods

Lectures and seminar discussions with practical case assignments and group tasks. The estimated workload is 270 hours.

Admission for external candidates

No

Assessment methods and criteria

Portfolio hand-in. Graded assessment, A-F. Individual grade on the portfolio. More information on what will be included in the portfolio will be given at the start of the semester in Canvas. There is no postponed examination in this course.

Reduction of Credits

This course’s contents overlap with the following courses. A reduction of credits will occur if one of these courses is taken in addition:

Course	Reduction of Credits
IS-423 – Ethical and Legal Aspects of Information Security	7.5