Code
MGYF MIS 5517
Level
M2
Field
Systèmes d’information
Language
Français/French
ECTS Credits
2
Class hours
35
Total student load
40
Program Manager(s)
Department
- Technologies, Information et Management
Educational team
Introduction to the module
The recent and rapid evolution of information technology has significantly accelerated information exchange. Companies now face the challenge of effectively controlling the confidentiality, integrity, and availability of this data. As a critical nerve center, the Information System (IS) is frequently targeted by multiple attacks that threaten business continuity and necessitate the implementation of internal security policies.
Information Systems Security (ISS) encompasses a set of methods, techniques, and tools designed to protect IT resources in order to ensure service availability, data confidentiality, and integrity. This is a major stake for companies as well as for all surrounding stakeholders. Security is no longer confined solely to the role of IT professionals.
In the long term: Its purpose is to maintain user and customer trust.
In the medium term: Its purpose is to ensure the overall coherence of the information system.
In the short term: The objective is to ensure that everyone has access to the information they need.
The international standard governing Information Security Management Systems (ISMS) is ISO/IEC 27001, which emphasizes Confidentiality – Integrity – Availability (CIA), or in French: Disponibilité – Intégrité – Confidentialité (DIC).
Learning goals/Programme objectives
- 6. Concevoir et/ou piloter des solutions de gestion innovantes en veillant à garantir une création de valeur soutenable pour toutes les parties prenantes
Objectifs d'apprentissage
- 6.1 - Design, develop and implement policies and practices conducive to the dynamism of the organisation, in order to resolve identified issues, taking into account the specific characteristics of the business context.
Rubrics
1. Gestion des Risques IT
Identification : Inventorier les vulnérabilités du SI
Évaluation : Qualifier l'impact métier (financier/opérationnel) des menaces.
Traitement : Définir des mesures d'atténuation et de continuité (PCA/PRA).
2. Sécurité Opérationnelle (Modèle DIC)
Confidentialité : Maîtriser les accès et habilitations (RBAC)
Intégrité : Garantir la non-altération des flux et données critiques.
Disponibilité : Assurer la résilience des systèmes et des services.
3. Gouvernance & Conformité
Normes : Appliquer les exigences de l'ISO 27001 et du RGPD.
Pilotage : Déployer des indicateurs de sécurité (KPI) et des tableaux de bord.
Changement : Concevoir des plans de sensibilisation à la culture cyber.
Content : structure and schedule
1. Gestion des Risques IT
2. Sécurité Opérationnelle (Modèle DIC)
3. Gouvernance & Conformité
4. projet fil rouge
Sustainable Development Goals
ODD 9 : Industrie, innovation et infrastructure
Le cours contribue à cet objectif en enseignant comment sécuriser les infrastructures numériques critiques. En maîtrisant la gestion des risques IT, les étudiants apprennent à bâtir des systèmes résilients capables de résister aux cyberattaques, garantissant ainsi la continuité de l'innovation et la fiabilité des services essentiels au sein des organisations.
ODD 16 : Paix, justice et institutions efficaces
Ce module sensibilise à la lutte contre la cybercriminalité et à la protection des données. En formant des futurs managers capables de garantir l'intégrité, la confidentialité et la disponibilité de l'information, le cours soutient la mise en place d'un environnement numérique sûr et éthique, indispensable au bon fonctionnement des institutions et au respect du droit des usagers.
Number of SDG's addressed among the 17
2
Learning delivery
synchrone
Pedagogical methods
Alternance de cours magiustraux et de mise en application sur un cas fil rouge
Evaluation and grading system and catch up exams
CF1: controle sur table individuel (50%)+ note de projet de groupe (50%°
CF2 : planfonné à 12 : reprendre individuellement le projet fil rouge en tenant en compte les remarques des enseignants
Module Policies
Professor-Student Communication
● The professor will contact the students through their school email address (IMT-BS/TSP) and the Moodle portal. No communication via personal email addresses will take place. It is the student responsibility to regularly check their IMT-BS/TSP mailbox.
● Students can communicate with the professor by emailing him/her to his institutional address. If necessary, it is possible to meet the professor in his office during office-hours or by appointment.
Students with accommodation needs
If a student has a disability that will prevent from completing the described work or require any kind of accommodation, he may inform the program director (with supporting documents) as soon as possible. Also, students are encouraged to discuss it with the professor.
Class behavior
● Out of courtesy for the professor and classmates, all mobile phones, electronic games or other devices that generate sound should be turned off during class.
● Students should avoid disruptive and disrespectful behavior such as: arriving late, leaving early, careless behavior (e.g. sleeping, reading a non-course material, using vulgar language, over-speaking, eating, drinking, etc.). A warning may be given on the first infraction of these rules. Repeated violators will be penalized and may face expulsion from the class and/or other disciplinary proceedings.
● The tolerated delay is 5 minutes. Attendance will be declared on Moodle during these 5 minutes via a QR code provided by the teacher at each course start.
● Student should arrive on time for exams and other assessments. No one will be allowed to enter the classroom once the first person has finished the exam and left the room. There is absolutely no exception to this rule. No student can continue to take an exam once the time is up. No student may leave the room during an examination unless he / she has finished and handed over all the documents.
● In the case of remote learning, the student must keep his camera on unless instructed otherwise by the professor.
Honor code
IMT-BS is committed to a policy of honesty in the academic community. Conduct that compromises this policy may result in academic and / or disciplinary sanctions. Students must refrain from cheating, lying, plagiarizing and stealing. This includes completing your own original work and giving credit to any other person whose ideas and printed materials (including those from the Internet) are paraphrased or quoted directly. Any student who violates or helps another student violate academic behavior standards will be penalized according to IMT-BS rules.
Textbook Required and Suggested Readings
Cyber Security: Learn The Basics of Cyber Security, Threat Management, Cyber Warfare Concepts and Executive-Level Policies. (Discover Cyber Security Series, Band 2)
Keywords
Cybersécurité, sécurité du SI
Prerequisites
Connaissance de base en architecture des réseaux et des systèmes informatiques; Le système d'information dans les entreprises;