Study at City
  1. Courses
  2. Applying
  3. Fees and funding
  4. Living in London
  5. Visit us
  6. Student support
  7. International students
  8. Order a prospectus
  9. Ask a student
  1. Continuing Professional Development
Study at City

Management of Information Security and Risk: IT Risk and Resilience CPPD

Key information

Choose a start date
To be confirmed
To be confirmed
To be confirmed
To be confirmed
Course code:
To be confirmed
To be confirmed
Application deadline:
To be confirmed
To be confirmed

Course overview

This module highlights the sources of risk in IT, provides terminology and causal models for discussing them, and illustrates patterns of resilient design of systems and organisations.

This module provides you with a systematic introduction to the topic of resilience and security as preparation for more complete study of its various technical specialties. It gives you a panorama of risks and of possible defences, enables you to decide adoption of defences in simple cases by appropriate analyses, and to recognise the role of the various bodies of specialist knowledge in supporting analyses and decisions about resilience and security in more complex situations.

The module will be delivered in block mode consisting of two blocks:

  • Thursday: 5pm-9pm
  • Friday: 9am-5pm
  • Saturday: 9am-5pm

The second block is delivered 6 weeks after the first block.
This module is taken from the MSc in Management of Information Security and Risk.

Course outcomes

Course outcomes

  • Basic concepts, definitions and types of requirements in dependability, security, resilience including reference to the relevant international standards and adopted good practices
  • Systematic methods for identifying vulnerabilities and threats; basic concepts and examples about means for achieving resilience and security: avoidance, prevention, removal, mitigation and recovery at the technical and at the organisational levels
  • Fundamental design trade-offs in formulating information security/resilience strategies; introduction to the means for assessing dependability and resilience and information assurance methodologies
  • Basic concept of the risks due to the interdependencies between critical infrastructures (i.e. power grid reliance on telecommunication and vice versa, etc.) and methods of its quantification and management (interdependency analysis).



Prerequisite knowledge

You should have a first or second class BSc honours degree (or equivalent non-UK qualification).You should also have approximately five years of relevant professional experience (absolute minimum of two years in exceptional circumstances).

You should also have basic competence and familiarity with mathematics and good professional English.



Assessment is coursework based consisting of a mixture of one or more of the following:

  • reports
  • essays
  • presentations
  • peer reviews
  • group work.