Information session April 2nd, Master 2 in Information System Security Management (ISSM)

Transcription

1 Information session April 2nd, 2015 Master 2 in Information System Security Management (ISSM)

2 Master s team Prof. Yves Le Traon Study director Rita Giannini Study coordinator

3 Master s team Nicolas Mayer Study director Bahija Sebane Training officer Chrystel Petiteville Training assistant

4 Other actors CLUb de la Sécurité des Systèmes d'information Luxembourgeois Portail de la sécurité de l'information du Ministère de l'economie et du Commerce extérieur Collège des Professionnels de la Sécurité de l Information Commission de Surveillance du Secteur Financier

5 Motivation Business relies on information systems The availability of these systems becomes critical The number of security incidents is growing rapidly Security management is now crucial Legal and regulatory constraints are arising Then Needs for training information security professionals and experts! Requires advanced and diverse competencies

6 Public Consultants / auditors Business owner CISO (Chief Information Security Officer) Professional people responsible for information security IT engineers, IT Managers Related Professions (Lawers, cybercops, etc.) Big companies SMEs administrations Financial sector Health sector Industries Public sector Other sectors

7 Objective Train experienced professionals to give skills of the chief information security officer (CISO)

8 The CISO (Chief Information Security Officer) Corporate Executive A job that deals with the whole organisation «Compliance» department «Risk Management» department IT department User services

9 Interdisciplinary training Legislation and regulation Security standards Security Audit Methodologies For information security Organisation Technologies For securing information and systems Enterprise management Project management Risk Management Security management

10 Program

11 Program Module 1 - Understanding organisations and management 9 ECTS Course hours Organisational theory and change 12 Architecture and business strategy 18 Financial Management 6 Project Management 12 IT Service Management 6 TOTAL 54

12 Program Module 2 Regulatory frameworks 8 ECTS Course hours Legal and regulatory aspects 18 Law enforcement 12 Special businesses and impacts 18 TOTAL 48

13 Program Module 3 Information Security Management 12 ECTS Course hours Information Security Management System ISMS 12 Risk analysis practices 6 Risk analysis and management 12 Electronic records management 12 Security Policy 12 Compliance Assurance 12 Business Continuity Management 6 TOTAL 72

14 Program Module 4 Technical aspects 12 ECTS Course hours Information Security Technologies 1 12 Information Security Technologies 2 12 Communication, information processing and persistence 1 Communication, information processing and persistence 2 Threats, attacks and controls TOTAL 72

15 Program Module 5 Human aspects 4 ECTS Course hours Human risk 12 Human communication 12 TOTAL 24

16 Program Module 6 Professional part 15 ECTS Course hours Working in information security management 6 Professional project n/a

17 ISED Information Security Education Day 2015 Theme: Understanding Data Protection challenges The ISED is an event that aims providing each year new knowledge on a hot-topic related to security and privacy. Primarily it targets the current and former students of the professional (Master en management de la sécurité des systèmes d'information). However the ISED also provides an ideal forum where academics and practitioners can learn about the different facets of a key-topic, exchange, discuss ideas, and compare experiences. Friday 22nd May 2015

18 Program = 6 modules 1 9 ECTS Understanding organisations and management 8 ECTS Regulatory frameworks ECTS Professional part 12 ECTS Information security Management ECTS Human aspects 12 ECTS Technical aspects 4

19 Schedule Understanding organisations and management Regulatory frameworks Information security Management Technical aspects Working in information security management Human aspects Professional part semester 1 semester 2 semester 3 semester 4 60 ECTS

20 1st promotion

21 Professional discussions in a good atmosphere!

22 Practical information Calendar 276 hours: academic courses In english Two academic years, in 20/25 sessions of 2 consecutive days Friday and Saturday from 9.00 a.m. to 5.30 p.m. The exact schedule is given at the beginning of each semester 4 to 6 months: professional project Place CRP Henri Tudor on Fridays Université du Luxembourg on Saturdays Fees: 4600 * including Registration at the University of Luxembourg Training fees * FEES MAY CHANGE Electronic communication tool Moodle Course start date September 18th, 2015

23 Registration 1/ Preselection application: April 24th - rita.giannini@uni.lu Resumé + cover letter + letter from employer if possible Minimum requirement = BAC+4 level (or 3 years of experience for each missing year) and a background/experience in IT 2/ Interview: TBD 3/ Final registration online via management_de_la_securite_des_systemes_d_information_professionnel 4/ Course start date: September 18th, 2014

24 Contact Rita Giannini