Text

Course syllabus - Governance and IT-law in Cybersecurity

Scope

7.5 credits

Course code

OAI402

Valid from

Autumn semester 2026

Education level

Second cycle

Progressive Specialisation

A1F (Second cycle, has second-cycle course/s as entry requirements)

Main area(s)

Organisation

Department of Computer Science & Engineering

Ratified

2025-12-19

Literature lists

Course literature is preliminary up to 8 weeks before course start. Course literature can be valid over several semesters.

Objectives

The aim of the course is for the student to become aware of the rules and regulations that govern cyber security work and the management's responsibility for this. The courses also provide an overview of the roles and contributions of different societal actors in cybersecurity and organizational aspects in interplay between the actors.

Learning outcomes

After completing the course, the student should be able to:

  1. identify and explain the most important rules and regulations that govern cybersecurity work, both nationally and internationally,
  2. describe and critically review management's responsibilities for cybersecurity within organizations, including how to organize work in a correct and efficient manner and
  3. analyze and compare the organization of, and interplay between, key actors in cybersecurity at national and international levels.

Course content

This course provides an understanding of cybersecurity and management's responsibilities in this area.

Main areas covered in the course include:

  • Rules and regulations:
    A review of the most important national and international laws and regulations that govern cybersecurity work.
  • Management's responsibilities:
    Clarification of management's legal responsibility for cybersecurity and organizational aspects to substantiate this.
  • Roles and Contributions:
    Analysis of the roles and contributions of government, military, and private sector to cybersecurity.
  • Practical Applications:
    Case studies and practical exercises that help students apply theoretical knowledge in real-world situations.

Specific requirements

Degree or completed courses of at least 180 credits and Cybersecurity Fundamentals 7,5 hp at advanced level or equivalent. In addition Swedish course 3 or Swedish level 3 and English course 6 or English level 2 are required. For courses given entirely in English exemption is made from the requirement in Swedish course 3 or Swedish level 3.

Examination

OVN1, Exercise, 3 credits, examines part of the learning outcome 2, marks Fail (U) or Pass (G).

INL1, Assignment, 1,5 credits, examines part of the learning outcome 3, marks Fail (U) or Pass (G).

TEN1, Written on-campus examination, 3 credits, examines the learning outcome 1, part of the learning outcome 2 and part of the learning outcome 3, marks Fail (U, 3, 4 or 5.

A student who has a certificate from MDU regarding disability study support, can request adaptions for the examination. It is the examiner who takes decisions on any adaptions, based on the certificate and other conditions.

Grade

Grading scale: 5, 4, 3

Interim Regulations and Other Regulations

The course completely overlaps with OAI401 Governance and IT-law in Cybersecurity.