2012/2013 Programme Specification Data
Programme Name
Information Security and Audit
Programme Number
Programme Award
P12563
MSc
QAA Subject Benchmark
Statements
n/a
Programme Aims
To provide students with an understanding of computer security
implementation and an ability to critically evaluate technologies
available for implementing security in systems.
To provide students with an understanding of computer security
auditing and an ability to critically evaluate audit methodologies
and approaches for implementing security audits.
To enable students to find innovative solutions to security and
audit problems in information systems.
To provide the theoretical and practical skills for security
management during systems development and systems
maintenance.
To ensure that students have a basic understanding of the legal,
regulatory requirements, and international standards
requirements, pertaining to computer security and audit in
different nations.
Programme Learning
Outcomes: Knowledge and
Understanding
To ensure that students have a knowledge of computer crime,
police and forensic methods, and the legal requirements for
collecting evidence.
A Knowledge and understanding of:
1. information systems threats, vulnerabilities, risks and controls
2. computer security implementation
standards/technologies/methods
3. computer audit practice standards/technologies/methods
4. legal/regulatory/standards frameworks for security/audit
operations in UK, USA, Europe
5. computer crime, police and forensic methods, and
collection/presentation of legal evidence
security management for systems development, systems
maintenance, and systems compliance
Programme Learning
Outcomes: Intellectual Skills
B Intellectual skills:
1. Synthesis of information from a variety of different sources
2. Integration of theory and practice within the constraints of a
given framework
3. Ability to plan, conduct and write up an academic piece of
research
4. Ability to design and implement practical solutions to realworld problems.
Ability to conduct a practical investigative task in a realworld scenario
Programme Learning
Outcomes: Subject Practical
Skills
Programme Learning
Outcomes: Transferable/Key
Skills
Programme Learning
Outcomes: Graduate
Attributes
Teaching and Learning
Methods
C Subject Practical skills:
1. Perform a practical security audit in a real-world situation e.g.
audit university computer lab
2. Audit/test controls on data integrity in end-user applications
e.g. databases/spreadsheets/websites
3. Detection of network security attacks and configuration of
protective mechanisms e.g. firewalls
4. Have practical experience of operation and application of an
encryption technology eg. PGP
D Transferable/ key skills:
1. All of the intellectual skills mentioned above are also
transferable skills.
2. Ability to effectively work alone seeking solutions to practical
problems.
3. Ability to effectively work as member of a team seeking
solutions to practical problems.
4. Ability to see the world from the perspectives of the various
stake holder groups.
n/a
A Teaching and learning:
Knowledge acquisition is acquired through a combination of
formal lecture presentations, classroom problem solving
sessions, laboratory work and guided self-study. This will be
supported by information sources and documentation of
professional bodies, academic research presentations from
within the teaching team and presentations from industry
practitioners.
B Teaching and learning
Intellectual skills are developed through practical coursework,
laboratory sessions and discussions in class sessions, for all
courses including the project.
C Teaching and learning
These skills are developed gradually through the programme.
Each week students will be given practical exercises to help them
build both skills and confidence. These will range from small
simple exercises through to more complex activities that will
require the application of a range of technologies and methods to
develop a systems security solution. Equally, students will be
able to assess and report on the success of a solution.
D Teaching and learning
Developed through lectures that present theory by working
through case studies and highly interactive class tutorials that
use real case studies. These will attempt to recreate the
professional consultant experience of technical security and audit
practitioners. Students will also work collaboratively with their
peers in small projects and give presentations on specific topics.
Assessment Methods
A Assessment Methods:
The assessment methods are defined in each course
description. Each course will use a combination of coursework
and examination. The project will be assessed as an individual
piece of work.
B Assessment Methods:
Intellectual skills are assessed by formal examinations as well as
the coursework and as the final outcomes of the project.
C Assessment Methods:
Some of the weekly exercises will contribute to assessment. In
addition, students will undertake other assignments that will allow
them to integrate the skills they have acquired. They will be
required to assess and report on the success of their solutions.
D Assessment Methods:
The main methods of assessments in this category will be by
coursework and the final master’s project.