English   Danish

2015/2016  BA-BHAAI1054U  IT Risk Management and Governance

English Title
IT Risk Management and Governance

Course information

Language English
Course ECTS 7.5 ECTS
Type Elective
Level Bachelor
Duration Summer
Start time of the course Summer
Timetable Course schedule will be posted at calendar.cbs.dk
Max. participants 120
Study board
Study Board for BSc in Economics and Business Administration
Course coordinator
  • Course instructor: Dr. Michelle Antero, Assistant Professor. Michelle.Antero@zu.ac.ae
    Sven Bislev - Department of Intercultural Communication and Management (ICM)
In case of any academic questions related to the course, please contact the course instructor or the academic director, Sven Bislev at sb.ikl@cbs.dk
Main academic disciplines
  • Corporate governance
  • Information technology
  • Organization
Last updated on 12-05-2016
Learning objectives
To achieve the grade 12, students should meet the following learning objectives with no or only minor mistakes or errors: The course aims to address the critical issues in IT and have to manage enterprise information systems. The
course looks at IT security and risks into detail and how various types of governance arrangements are can
support the IT strategy of the organization. Emphasis is placed on understanding the topics that are relevant
to managing and mitigating the IT risks in an organization.
Course prerequisites
No prerequisites.
Examination
IT Risk Management and Governance:
Exam ECTS 7,5
Examination form Home assignment - written product
Individual or group exam Individual
Size of written product Max. 10 pages
Assignment type Written assignment
Duration Written product to be submitted on specified date and time.
Grading scale 7-step scale
Examiner(s) One internal examiner
Exam period Summer, Ordinary exam: 1-5 August 2016.
Retake exam: Within two months from the ordinary exam.
Make-up exam/re-exam
Same examination form as the ordinary exam
Home assignment with a new exam question
Course content and structure

Course content: The course topics cover information systems’ overall management and governance. We will illustrate how IT risks are managed to achieve strategic benefits for the company. IT Governance concepts as related to the company's overall IT strategy. How the company's various IT governance arrangements key governance concepts to consider when developing IT governance policies?

Course structure: (NB. Please note that course structure is pre-determined by CBS. The fixed form is 11 classes of 3 lessons (of 45 minutes each), placed either Monday and Wednesday or Tuesday and Thursday. Approximately half-way through the course a feedback activity must take place. Please indicate topic for each class, and feel free to suggest your desired form of feedback activity):

 

Class 1: IT Risk, Risk Management

Class 2: Risk Management and its Importance to the Organization

Class 3:Developing a Risk Management Plan

Class 4: Defining Risk Assessment

Class 5: Identifying Assets and Activities to be Protected

Class 6: Risk Mitigation security controls

feedback activity: Case Study

Class 7: Turning your Risk assessment into a Risk Mitigation

Class 8: IT Governance Simultaneously Empowers and Controls

Class 9: IT Governance Archetypes for Allocating Decision Rights

Class 10:Mechanisms for Implementing IT Governance

Class 11: Linking Strategy, IT Governance, and Performance

Teaching methods
Lectures and case-based tutorials
Student workload
Preliminary assignment 10 hours
Classroom attendance 33 hours
Preparation 144 hours
Feedback activity 7 hours
Examination 12 hours
Further Information

 

Preliminary Assignment: To help students get maximum value from ISUP courses, instructors provide a reading or a small number of readings or video clips to be read or viewed before the start of classes with a related task scheduled for class 1 in order to 'jump-start' the learning process.

 

Feedback Activity: A feedback activitity defined by the course instructor will take place app. half-way through the course. 
 

 

The timetable is available on  http://www.cbs.dk/files/cbs.dk/isup_timetable_2016_updated.pdf

Expected literature

PRIMARY LITERATURE (MUST-HAVE BOOKS):

Gibson, Dari: Managing Risk in Information Systems

SBN-13: 978-0763791872

ISBN-10: 0763791873

JONES & BARTLETT, 2015

 

 

 

Last updated on 12-05-2016