Course Brief

Most large and medium sized organisations are heavily dependent on their computerised systems and the business functions being conducted over the Internet. These activities require secure, reliable IT systems, procedures and personnel. This in turn assumes the availability of IT professionals with expertise in security, compliance and auditing issues. This course will cover many aspects of IT security auditing based around recognised standards eg. ISO27001/2. This course will prove useful to IT security professionals in medium and large organisations.

1. Critically analyse of types of IT audits, such as compliance, investigative, operational and audit stages (as per ISO27007) as well as Audit fieldwork methods: Checklists, observation, interview, CAATs, etc.

2. Demonstrate a critical understanding of Internal vs. External, and CRSA Audit report techniques: Root Cause, Gap Analysis, types of audit opinion.

3. Demonstrate sophisticated, systematic and comprehensive knowledge of standards and laws: ISO27002, PCI DSS, Cobit5, Sarbanes-Oxley Professional issues: ISACA Code of Conduct, Qualifications, Audit Universe.

Risk management : ALE; Audit process: planning, fieldwork, solutions, reporting, tracking; Audit methods: checklist, observation, interview, CAAT’s, peer/self/full, internal v external; Sample audit examples: hardware, software, HR, BCP; IT Governance: Standards, ISO27002, ISO27031; Audit Frameworks : COBIT; Legal aspects: Sarbanes-Oxley, Data Protection, Copyright, Public Interest Disclosure; Professional qualifications: CISA, CISSP.

Lecture: Concepts will be introduced in lectures and expanded upon in tutorials. There will be use of: case study material, professional anecdotes, Students will participate via: discussions, outside speakers, group work and individual work. Student time will be divided: Lectures 2/3, Tutorials 1/3.

Coursework: 100% weighting, 50% pass mark.
Learning Outcomes: 1 – 3.
Word Length: 3000.
Outline Details: A practical audit will be done and a report written.

Formative Assessment: The students will conduct the audit as a group (of 3-5) and report individually. The report will be marked and each script returned with annotated comments and an individual feedback sheet. There will also be general feedback given to the entire class on the last week of the course.

  • MSc Computer Forensics & Cyber Security

    The MSc Computer Forensics & Cyber Security, awarded by the University of Greenwich, is structured to provide a viable option to graduates of:

    • An honours degree 2:2 or above in computing or computing science or a suitable numerate subject (e.g. mathematics, physics, engineering, information systems or multimedia) that includes software development experience.
    • University of Greenwich's BSc (Hons) Computing and Information System with Upper Second Class Honours or above 
    • Mature applicants who demonstrate academic potential and work experience can also be assessed for eligibility.
    • Applicants with a similar level qualification may also be eligible for more information or email us at [email protected]

    Students on the MSc Computer Forensics & Cyber Security will learn a wide range of practical and theoretical skills which will develop a sound knowledge of cyber security and its application in real life situations.

    Our Computer Forensics and Cyber Security course allows students to familiarise themselves with the most recent technologies, scientific innovations and best practice in protecting digital infrastructures, from enterprise networks to Internet of Things environments. Students are also trained on modern tools and methodologies for conducting digital forensics investigations, spanning the whole range from the collection of evidence to analysis and acting as expert witnesses.

    This course is suitable for both newcomers to computer security and computer forensics and practitioners who wish to further their skills. It covers practical skills for network security, penetration testing and digital forensics, as well as the theory and scientific basis that underpins everyday practice. It also ensures that students have a basic understanding of the legal and regulatory requirements and the standards pertaining to computer security.

    Enrol by December 16, 2024, to receive a 10% discount.

    SBCS GLI alumni(degree graduates) will receive a 5% discount.
    Students paying in full will receive a 5% discount.
     

    Highlights at a glance

    • This programme is offered blended/online - part-time and comprises four (4) semesters
    • Total duration - 2 years (Part Time)
    • All material provided digitally
    • Blended approach to learning with a combination of self study, online sessions and workshops

    Programme Content at a glance

    • Modern methods and techniques for cyber security, including penetration testing and IT auditing.
    • Throughout this course you will study cyber security and digital forensics, system administration and security.
    • You will learn how to apply police and forensic methods to detecting cyber crime, using related software and hardware technologies.
    • This course includes hands-on training in current forensic tools as used by the police. Students can therefore contribute quickly to the well-being of corporate IT and informational assets.
    • University of Greenwich is an academic partner with The Council for Registered Ethical Security Testers (CREST) and with the Chartered Institute of Information Security (CIISec).
    • The degree is provisionally certified by the National Cyber Security Centre (NCSC), a part of GCHQ.

     

    At SBCS we focus on