Governance and Management of Cyber Security
BASIC DATA
course listing
A - main register
course code
ICS0009
course title in Estonian
Küberturbe haldus ja juhtimine
course title in English
Governance and Management of Cyber Security
course volume CP
-
ECTS credits
6.00
to be declared
yes
assessment form
Examination
teaching semester
spring
language of instruction
Estonian
English
Study programmes that contain the course
code of the study programme version
course compulsory
yes
Structural units teaching the course
IC - IT College
Timetable link
Version:
VERSION SPECIFIC DATA
course aims in Estonian
Anda baastasemel teadmised ja oskused küberturbe haldusest ja juhtimisest ühes asutuses ning kasutatavamatest tehnikatest.
course aims in English
Provide a basic-level knowlegde and skills of cyber security governance and management with the most commonly used techniques.
learning outcomes in the course in Est.
Õpiväljundid:
- küberturbe haldus: üliõpilasel on teadmised ettevõtte küberturbe programmi väljatöötamiseks;
- küberriskide analüüs: üliõpilane teostab ettevõtte küberriskide analüüsi;
- küberintsidentide haldus: üliõpilasel on teadmised ettevõtte küberintsidentide haldamise poliitika väljatöötamiseks;
- ettevõtte (äri) jätkusuutlikkus: üliõpilasel on teadmised ettevõtte jätkusuutlikkuse plaani väljatöötamiseks;
- küberturbe strateegia: üliõpilasel on teadmised ettevõtte küberturbe strateegia väljatöötamiseks.
- küberturbe haldus: üliõpilasel on teadmised ettevõtte küberturbe programmi väljatöötamiseks;
- küberriskide analüüs: üliõpilane teostab ettevõtte küberriskide analüüsi;
- küberintsidentide haldus: üliõpilasel on teadmised ettevõtte küberintsidentide haldamise poliitika väljatöötamiseks;
- ettevõtte (äri) jätkusuutlikkus: üliõpilasel on teadmised ettevõtte jätkusuutlikkuse plaani väljatöötamiseks;
- küberturbe strateegia: üliõpilasel on teadmised ettevõtte küberturbe strateegia väljatöötamiseks.
learning outcomes in the course in Eng.
Learning outcomes:
- cybersecurity governance: student has knowledge to develop enterprise cybersecurity program;
- cybersecurity risk analysis: student performs enterprise cyber security risk analysis;
- cybersecurity incident management: student has knowledge to develop enterprise cybersecurity incident management policy;
- business continuity: student has knowledge to develop enterprise business continuity management plan;
- cybersecurity strategy: student has knowledge to develop enterprise cyber security strategy.
- cybersecurity governance: student has knowledge to develop enterprise cybersecurity program;
- cybersecurity risk analysis: student performs enterprise cyber security risk analysis;
- cybersecurity incident management: student has knowledge to develop enterprise cybersecurity incident management policy;
- business continuity: student has knowledge to develop enterprise business continuity management plan;
- cybersecurity strategy: student has knowledge to develop enterprise cyber security strategy.
brief description of the course in Estonian
Küberturbe juhtimise põhimõtted. Infoturbe ja küberturbe riskide haldus, intsidentide haldus. Tarkvara turvaarhitektuur ja turvaline tarkvaraarendus. Kasutatavamad tehnikad ja raamistikud, nende rakendamine.
Moodle: https://moodle.taltech.ee/course/view.php?id=30021
Moodle: https://moodle.taltech.ee/course/view.php?id=30021
brief description of the course in English
Cyber security management principles. Information security and cyber security risk management, incident management. Software security architecture and secure software development. Most used techniques and frameworks, their implementation.
Moodle: https://moodle.taltech.ee/course/view.php?id=30021
Moodle: https://moodle.taltech.ee/course/view.php?id=30021
type of assessment in Estonian
Eristav hindamine.
type of assessment in English
Grading.
independent study in Estonian
Rühmatöö koos ettekande ja kaitsmisega seminaril.
independent study in English
Group work with presentation and defense at the seminar.
study literature
- ISO/IEC 27000:2014, Information technology - Security techniques -Information security management systems _ Overview and vocabulary;
- ISO/IEC 27001:2013, Information technology - Security techniques - Information security management systems _ Requirements;
- ISO/IEC 27002:2013, Information technology - Security techniques - Code of practice for information security management;
- Dan Shoemaker, Cybersecurity: The Essential Body Of Knowledge, ISBN-13: 978-1435481695;
- Michael E. Whitman, Principles of Incident Response and Disaster Recovery, ISBN-13: 978-1111138059;
- Michael E. Whitman, Management of Information Security, ISBN-13: 978-1435488847;
- Krag Brotby, Information Security Governance: A Practical Development and Implementation Approach, ISBN-13: 978-0470131183.
- ISO/IEC 27001:2013, Information technology - Security techniques - Information security management systems _ Requirements;
- ISO/IEC 27002:2013, Information technology - Security techniques - Code of practice for information security management;
- Dan Shoemaker, Cybersecurity: The Essential Body Of Knowledge, ISBN-13: 978-1435481695;
- Michael E. Whitman, Principles of Incident Response and Disaster Recovery, ISBN-13: 978-1111138059;
- Michael E. Whitman, Management of Information Security, ISBN-13: 978-1435488847;
- Krag Brotby, Information Security Governance: A Practical Development and Implementation Approach, ISBN-13: 978-0470131183.
study forms and load
daytime study: weekly hours
3.0
session-based study work load (in a semester):
lectures
2.0
lectures
-
practices
1.0
practices
-
exercises
0.0
exercises
-
lecturer in charge
-
LECTURER SYLLABUS INFO
semester of studies
teaching lecturer / unit
language of instruction
Extended syllabus
2025/2026 spring
Valdo Praust, IC - IT College
English