This module is designed to provide students with an introduction to methodologies (and their constituent methods) used to carry out a research project in computing and related technology disciplines. It is designed for students from a wide variety of backgrounds and aims to help them to develop critical thinking and to learn modern research techniques.

1. Apply modern research methods appropriate to applied computing research problems / questions.

2. Discuss current challenges and research foci in selected areas.

3. Independently acquire and assess relevant knowledge that is contextually appropriate and specific to an applied area of computing research.

4. Formally exhibit their research capabilities within an area of applied computing.

5. Apply professional standards relevant to the process of research in computing / IT.

6. Participate in peer collaboration and evaluation exercises.

This module is designed to develop knowledge and competence in the area of Data Protection for undertakings in Ireland. The objective is to provide learners with the knowledge to ensure that the privacy rights of individuals are safeguarded in relation to the processing of personal data by organisations. There will be particular emphasis on the legal compliance of undertakings and the role of the Data Protection Officers and other related professionals.

1. explain the development of theories and concepts of a legal right to personal privacy.

2. demonstrate a detailed knowledge and understanding of the EU General Data Protection Regulation including the form and content of this legal instrument, and subsequent legislation.

3. use acquired skills to implement and manage data protection systems which are legally compliant and learners will be able to appreciate the nature of the role and the obligations of a Data Protection Officer.
4. articulate individual rights of data subjects and the duties of data controllers and data processors.
5. evaluate the role of the Data Protection Commissioner, and assess the enforcement mechanisms available to the DPC.
6. identify and explain the distinction between a criminal sanction and a civil remedy for a breach of privacy and consider the effectiveness of these legal proceedings.
7. evaluatethe GDPR’s focus on accountability.

This module practically demonstrates measures and controls that an organisation can deploy to improve threat mitigation capabilities and ensure compliance with the relevant frameworks. Measures such as security infrastructure, server and cloud services, secure networks and encryption ensure organisations comply with legal and ethical standards and mitigate against risk.

1. Explain the theory, concepts and methods that apply to Cyber Security Architecture.

2. Identify relevant frameworks that apply to Cyber Security Architecture.

3. Implement appropriate measures and controls that an organisation can deploy to improve threat mitigation capabilities and ensure compliance with relevant frameworks.

4. Design, develop and apply techniques and technologies to ensure organisations comply with legal and ethical standards and mitigate against risk.

5. Analyse and evaluate research topics in the area of Cyber Security Architecture individually or as part of a team.

SIEM explores the concept of, and software solutions associated with Secure Information and Event Management. SIEM provides and organisation with an overall view of what is happening on IT infrastructure in real-time and helps IT teams to be more proactive in the fight against security threats. SIEM is also a recognised industry acronym associated with cybersecurity. This module will examine data collection and forensics, user activity, alert management and reporting giving IT professionals the knowledge to respond quickly and efficiently to cyberattack incidences.

The module also examine cybersecurity best practice implementations around the Mitre ATT&CK Framework and Lockheed Martin's Cyber Kill Chain Model. Case studies examining the implementation of cybersecurity controls are an essential element of this module.

1. Explainconcepts of SIEM as part of overall cyber security

2. Applyknowledge of the legal requirements of protecting organisational data

3. Design effective reports for organisational compliance requirements

4. Evaluate the tools used for data analytics and visualisation

5. Evaluate and compare SIEM platforms

6. Use threat intelligence to understand the risk to organisational data and infrastructure.

7. Apply matrix solutions for threat hunting

8. Interpret the organised approaches to manage the aftermath of a security breach or cyberattack

9. Deploy multiple collection agents to gather security-related events from end-user devices, servers and network equipment

This module introduces students to concepts of Information technology governance, and the major governance frameworks which organisations use to manage their IT operations efficiently, safely and with a high degree of security: COBIT, ITIL, COSO, and CMMI. Specifically, the module explains the elements of these frameworks relating to cybersecurity risk management, cognitive risk, and the International cybersecurity standards in use: ISO 27001/2/3, NIST-CSF, and HITRUST-CSF. The module examines in detail cybersecurity Risk categories and quantitative and qualitative risk assessment techniques. Probabilities around attack likelihood, annual loss expectancy, and impact are calculated. Management, Technical and Operational risk mitigations are explained in terms of the MITRE ATT&CK and Lockheed Martin Kill Chain frameworks. Finally, generic industry and public service organisations: are examined: manufacturing, financial services (PCI DSS), healthcare (HL7), government; from the point of view of cybersecurity compliance/data protection regulations.

1. Analyse key Information Technology Governance Frameworks including COBIT, ITIL, CMMI, COSO, etc, and the rules and policies which ensure effective, controlled, and integrated operation of an organisation’s IT infrastructure and data.

2. Examine cyber security risk management frameworks, including theMitre Cyber Prep 2.0, NIST CSF, and Cognitive Risk Frameworks.

3. Explain international cyber security standards (ISO 27001/2/3/4, NIST CSF, and O-RT, O-RA),and explain the context in which these are used to defend against cybersecurity threats.

4. Examine and apply qualitative and quantitative risk assessment methodologies (DREAD, CVSS, SLE, EF, ARO, and ALE) in the context of threat probabilities and vulnerabilities.

5. Critically explore threat/cyber risk mitigation philosophies in terms of effectiveness, adaptability, and strategic integration including Lockheed Martin Cyber Kill Chain, and the Mitre ATT&CK framework.

6. Identify the guidelines and best practices which form the compliance and regulatory frameworks in manufacturing, financial services industries, healthcare, and public service arenas: (SOX, PCI DSS, NIST, HL7, HIPAA/HITECH, SOCs, AT-101, and FedRAMP).

This module provides an opportunity for the learner to conduct an independent piece of research or an innovative and creative design & development or a cybersecurity risk & compliance programme. The project will integrate their knowledge and experience from a social, technological and organisational perspective with a view to using the amalgam as the basis for identifying/building a solution to a problem in the domain of study.

1. Undertake independent rigorous investigations.

2. Manage and take responsibility for a significant project throughout the various stages of its progression.

3. Evaluate critically relevant literature.

4. Conduct an in-depth investigation relating to the development or performance of an aspect of interactive/social media technology.

5. Analyse evidence and/or produce an implementation to meet a set of agreed requirements.

6. Evaluate and conclude findings.

7. Report, present and communicate findings and conclusions effectively.