MANAGEMENT OF INFORMATION SECURITY | ASM655 GROUP PROJECT

MANAGEMENT OF INFORMATION SECURITY

(ASM655)

SEMESTER MARCH 2021 – AUGUST 2021

GROUP PROJECT (40%)

DESIGNING AN INFORMATION SECURITY AWARENESS PROGRAM

INSTRUCTIONS:

1. This is a GROUP PROJECT. The project must be done in a group of five or six students.

2. Each group is required to identify and select a real and existing organization for the group project based
on the list of businesses or industries below:

2.1 Banking or Finance

2.2 Education
2.3 Network and Telecommunication
2.4 Utility
2.5 Manufacturing
2.6 Malls, Supermarkets or Retails
2.7 Healthcare or Medical
2.8 Hospitality or Tourism
2.9 Government Agency
2.10 Computer and Information Technology
2.11 Constructions
2.12 Real Estate
2.13 Transportations
2.14 Entertainment
2.15 Pharmaceutical
2.16 Agriculture
2.17 Beauty and Fashion

3. Students are required to conduct a security awareness and behavior survey and design a complete security
awareness program for the company.

4. Students must identify the target group and select the best solution and approach for an effective
information security awareness program.

5. Students are required to prepare a project initial plan and must be submitted to the lecturer on WEEK 4
(Deadline: 23 April 2021 – before 11:59PM). Your initial plan must include the following information:

5.1 A brief information about the company

5.2 The relevancy of the information security awareness program for the company
5.3 A brief project description and timeline – Planning for an interview / initial survey / etc.

(Students are required to identify the contact person in the company and submit the project application in
FBMIS (SAIS))

6. Prepare a proposal for the company which include the following information (please use a
guideline/template provided):

i. Executive Summary – Create a high-level summary of the project.

ii. Organization’s Background - Corporate profile, mission, vision, and objectives.

Semester March 2021 – August 2021 Page 1/3

MANAGEMENT OF INFORMATION SECURITY | ASM655 GROUP PROJECT
iii. Project Background – Highlight the information security awareness and behavior survey as well as
the problem and place it within the context of the information security awareness program.
iv. Project Charter
v. Business Benefits
vi. Defining Security Awareness Target Group
vii. Program Learning Objectives

viii. Communication Plan

ix. Awareness Poster / Video
x. Measurement Metrics
xi. Execution Checklist
xii. Conclusion

7. Submission date :  WEEK 15 (Deadline: 9 July 2021 – before 11:59PM)

Late submission will not be entertained and shall affect your grades!

Semester March 2021 – August 2021 Page 2/3

MANAGEMENT OF INFORMATION SECURITY | ASM655 GROUP PROJECT

GROUP PROJECT REPORT GUIDELINES

Please follow these guidelines when compiling your report for the INFORMATION SECURITY
AWARENESS PROGRAM project:

a) Format: Arial 11, spacing: 1.5 cm and at least 15 pages (excluding appendices).

b) Arrangement of report is as follows:

● Preliminary Materials

i. Cover page
ii. Table of Contents
iii. Acknowledgements
● Body of Report

i. Abstract/Executive Summary
ii. Introduction
▪ Organization’s background – Corporate profile, mission, vision, and objectives.
▪ Project Background – Highlight the information security awareness and behavior survey as
well as the problem and place it within the context of the information security awareness
program.
iii. Contents
 Project Charter
 Business Benefits
 Defining Security Awareness Target Group
 Program Learning Objectives
 Communication Plan
 Awareness Poster / Video
 Measurement Metrics
 Execution Checklist
iv. Conclusions
v. Reference (APA style)
● Appendices

i. Relevant Documents.

END OF PROJECT GUIDELINES

Semester March 2021 – August 2021 Page 3/3