Available in 2021
Course code



10 units


3000 level

Course handbook


Organisations need to ensure that their operations are compliant with relevant security standards and industry practices. This course provides students with practical knowledge of important security standards and best practices in information security, risk management and security evaluation criteria in industry sectors including finance and healthcare. The course also introduces legal aspects associated with privacy and data breaches.

Availability2021 Course Timetables


  • Semester 2 - 2021

Learning outcomes

On successful completion of the course students will be able to:

1. Analyse security risks and security requirements in organisations

2. Discuss important security standards and best practices in security management for businesses

3. Develop strategies and methods for evaluating and implementing information security management standard in organizations

4. Evaluate security standards in the finance and healthcare industry

5. Analyse compliance requirements with respect to certain privacy and data breach legal considerations


  1.  Course Overview

  2. Information Security Management

  3. Information Security Management Standard: ISO 27000  Series -- Information Security Standards.

  4. Security Policy and Controls ISO 27000 Series

  5. Risk Management: ISO 27000 Series

  6. Legal and Regulatory Issues: ISO 27000 Series

  7. Security Evaluation Criteria: TCSEC/ITSEC/Common Criteria

  8. Finance: Payment Card Industry Data Security Standard

  9. Security in Electronic Patient Health Records

  10. Legal Aspects of Information Security

Assumed knowledge

SENG2250 System and Network Security or COMP3500 Security Attacks Analysis and Mitigation Strategies

Assessment items

Written Assignment: Assignment 1

Written Assignment: Assignment 2

Formal Examination: Final Examination *

* This assessment has a compulsory requirement.

Compulsory Requirements

In order to pass this course, each student must complete ALL of the following compulsory requirements:

Course Assessment Requirements:

  • Formal Examination: Minimum Grade / Mark Requirement - Students must obtain a specified minimum grade / mark in this assessment item to pass the course. - Students must obtain 40% in the final exam to pass the course.

Contact hours



Face to Face On Campus 2 hour(s) per Week for Full Term starting in week 1


Face to Face On Campus 2 hour(s) per Week for Full Term starting in week 1

The University of Newcastle acknowledges the traditional custodians of the lands within our footprint areas: Awabakal, Darkinjung, Biripai, Worimi, Wonnarua, and Eora Nations. We also pay respect to the wisdom of our Elders past and present.