Security, Ethics and Electronic Commerce
What is this course about?
This introductory information security course provides postgraduate students with a
broad management-oriented understanding of information security issues. This course
provides students the foundations of information security management and the
knowledge of developing managerial strategy for information security. Different aspects
of information security management in the modern e-commerce environment will be
studied, such as information security planning, information security policy, information
security program, risk management, law and ethics, and information security project
What are the expected
outcomes of the course?
Upon completion of this course, you should be able to:
demonstrate an awareness that information security is primarily a management
recognise the characteristics of information security management
identify and describe vulnerabilities, threats, attacks and countermeasures to the
develop, implement, and maintain information security policies
evaluate organisational security programs
implement the fundamental elements of information security management
identify and assess risk, and provide solutions of risk control for organisations
explain the role of people, process, and technology in information security
understand the legal and ethical issues in information security.
When is it offered?
2010 Term Two
For those of you taking the course on campus, the schedule will be published at
Where is it offered?
Brisbane, Flexible Learning, Gold Coast, Melbourne, Rockhampton, Sydney
How is it assessed?
Approved assessment for this course is:
Assessment 1 40%
Quizzes - Part A and B
Assessment 2 30%
Surveying current literature
Assessment 3 30%
Developing security policy
What textbooks do I need
Michael E. Whitman and Herbert J. Mattord 2007,
Management of Information
, 2nd ed, Course Technology.
Course Profile for: ECOM20002, 2010 Term Two - Page 1