Cyber Security Clinic

This subject involves a mixture of classroom instruction and client-facing practice, in which students will work directly with not-for-profit and community organisations to help improve their cybersecurity practices and capabilities. Roughly the first half of the subject involves traditional lectures and tutorials in which students learn core cyber security principles and the conceptual frameworks for cyber security practice within organisations, with a focus on not-for-profit and community organisations and the unique threats that they face. The second half of the subject is primarily practical in nature, with students putting into practice the classroom knowledge by working directly with organisations to help improve their cyber security practice. Community and not-for-profit organisations are especially important because they are rich targets for cyber attacks yet often have limited resources to employ cyber security professionals or consultants. In the practical component of this subject, students will carry out tasks including asset inventory construction, cyber risk assessment, developing recommendations for and assessing the effectiveness of security controls, and developing cyber security training material.