The purpose of this course is to facilitate learners acquire skills on information systems risk analysis, management, systems control and audit.

CLO 1 Review information system organisations risks 

CLO 2 Apply audit guidelines in assessing and mitigating risks

CLO 3 Implement information system security control plan and audit control measure 

CLO 4 Evaluate organisation's security policies and standards. 

 Introduction to Information Systems audit control: Computer crime and abuse. Risk Analysis: Introduction to risk management in information systems; Risk management in HIS. Systems Audit Controls: Audit Controls; ICT audit and controls; Audit guidelines. ICT and Systems security: Database Administration; data protection and preventing data loss and wireless; networks, Software security; Network security; network protection. Systems Security and Audit planning: Components of a security plan; Implementing a security plan; Guidelines and best practices. Security policies and standards: Security policy development and implementation; information security standards.