K/617/3038 Computers. Society and Law, OTHM Level 6 Diploma in Information Technology

K/617/3038 Computers. Society and Law, OTHM Level 6 Diploma in Information Technology

Aim: The aim of this unit is to develop learners` ability to deal with work related IT issues that apply beyond the immediate tasks of the Information Technology practitioner, ie ethical, legal and societal considerations. Formal legal requirements and responsibilities of the profession are included, as are the relevant professional codes of conduct.

Learning Outcome 1: Understand ethical concerns relating to Information Technology activities.
Learning Outcome 2: Understand the legislative environment relating to Information Technology activities.
Learning Outcome 3: Understand common types of computer- oriented crimes.
Learning Outcome 4: Be able to review security risks in an organisation and design an IT security policy.

Case Scenario
You have attended an Ethical Hacker forum as a student of OTHM and learnt that as an Information Technology practitioner you have to make a number of ethical, legal and societal judgements.

All OTHM students are expected to have a good knowledge of how they can positively contribute to the society. Your tutor will assign you the following tasks that will focus on making you a well-informed IT practitioner.

Task 1

You are tasked with producing a written report which includes: Instructions

  1. An analysis types of conflicts of interest for IT professionals.
  2. A critical evaluation of various ethical issues for IT professionals.
  3. A clear identification of ethical issue(s) within an IT organisation of your choice and recommend solutions for the organisation.
  4. A critical evaluation of the implications of legislation for IT activities.
  5. A critical evaluation of the impact of related legislation on the IT sector.
  6. Defining the main categories of cybercrime.
  7. A critical evaluation of the major categories of cybercrime
  8. A evaluation of various risk assessment procedures.
  9. A summary of the BS ISO 31000:2009 risk management principles and guidelines.
  10. A description of how IT security can be aligned with organisational policy.

Task 2 Policy document

Your document will consist of two parts.

  1. Design an IT security policy for your chosen organisation.
  2. Implement your IT security policy in your chosen organisation.

Assessment Criteria

1.1 Analyse the types of conflicts of interest for IT professionals.
1.2 Critically evaluate various ethical issues for IT professionals.
1.3 Identify ethical issue(s) within an IT organisation and recommend solutions.

2.1 Critically evaluate the implications of legislation for IT activities.
2.2 Critically evaluate the impact of related legislation on the IT sector.

3.1 Define the main categories of cybercrime.

3.2 Critically evaluate the major categories of cybercrime.

4.1 Evaluate various risk assessment procedures.

4.2 Summarise the BS ISO 31000:2009 risk management principles and guidelines.
4.3 Describe how IT security can be aligned with organisational policy.
4.4 Design and implement an IT security policy for an organisation.