INF303 Cybersecurity for Information Systems
Unit Code
INF303
Level
Undergraduate
Campus
Brisbane | Sydney
Prerequisites
INF205
Credit Points
10
Overview
Students will learn about cyber security risks for business information systems and for the community at large. They will learn about the legal, professional and ethical responsibilities and standards for information security management. They will explore cyber security from both an attacker’s and a defendant’s position. They will examine tools, technologies and techniques in cyber security and learn how to analyse and manage risks and threats with secure design techniques, incident response and disaster recovery.
Associated Degrees
Duration | AQF Level
One Semester | Level 7
Core or elective Subject
☒ core subject for Bachelor of Business (Information Systems)
☐ elective subject
☐ other (please specify below):
Study Modes
√ Face to face on site
√ Full-time
√ Part-time
Learning Outcomes
- Demonstrate an understanding of the importance of data and information systems security for organisations.
- Demonstrate the application of theories, tools and technologies for offensive and defensive security practice.
- Critically analyse security risks in existing systems.
- Formulate solutions, mitigation strategies or disaster recovery approaches to existing security risks and breaches
- Assess compliance against ethical and legal regulatory frameworks, particularly in relation to information systems cyber security risk management
Assessment
AIIHE uses a variety of assessment tools to guide and assess each student’s achievement of their learning outcomes. In this subject there will be in–class activities intended to support you to engage in and reflect on your learning journey and understanding of the subject. You will also undertake assessment tasks related to your skills development, your effective engagement in group work and delivery of collaborative outcomes, including a written report and an oral presentation.
Summary of Assessment
- Students must attempt all assessment tasks, and at least a mark of 50% in total, to pass this subject.
- Assessment in this subject is consistent with and informed by the AIIHE Assessment Policy and Procedure.
| Assessment Task | Due Date | Weighting |
|---|---|---|
| Assessment 1: In-class Self Reflection (ICSR) |  Weeks 3, 5, 7, 9 | 20% |
| Assessment 2: Security Risk Assessment & Incident Response Plan based report | Week 6 | 30% |
| Assessment 3 (Part A): Proposal | Week 10 | 15% |
| Assessment 3 (Part B): Group Report and Presentation | Week 12 | 35% |
Learning Resources
AIIHE will update the topic coverage of the subject and the available relevant learning resources at the time of subject delivery. In the interim, AIIHE provides the following indicative list of relevant reference material. AIIHE also subscribes to eLearning Resources through the Canvas portal, and where relevant material is available, AIIHE will seek to source reference material from this system for staff and student access.
Prescribed text
- Whitman, M. E., & Mattord, H. J. (2022). Principles of Information Security (7th Edition). Cengage Learning.
Texts and References
- Brooks, C. J., Grow, J., Craig, P., Short, D., & Sayles, D. (2025). Cybersecurity essentials (2nd ed.). Wiley
- Stamp, M. (2024). Information security: Principles and practice (3rd ed.). Wiley
- Whitman, M. E., & Mattord, H. J. (2025). Management of information security (7th ed.). Cengage Learning