|
Module Number:
| 11891
|
| Module Title: | IT Security Law |
| |
IT-Sicherheitsrecht
|
| Department: |
Faculty 1 - Mathematics, Computer Science, Physics, Electrical Engineering and Information Technology
|
| Responsible Staff Member: | -
Prof. Dr.-Ing. Panchenko, Andriy
|
| Language of Teaching / Examination: | English |
| Duration: | 1 semester |
| Frequency of Offer: |
Every winter semester
|
| Credits: |
6
|
| Learning Outcome: | The student acquire basic knowledge in data protection law with references to data security, in order to carry out appropriate IT tasks in a company and communicate with data protection officers and legal department, or to audit and consult companies. They also acquire comprehension of basic principles of the IT security law, in order to be able to communicate with the Federal Office for Information Security. Furthermore they get to know principles of the EU Directive on security of network and information systems (NIS Directive) and the Federal NIS Directive Implementation Act, likewise principles of the criminal offenses related to IT security, in order to recognize in practice whether the legal department should be informed in the event of an incident. |
| Contents: | - Basic concepts and principles of data protection law - EU General Data Protection Regulation and German Accompanying Law
- Legal requirements for technical and organizational measures for data protection
- Oblication to report unlawful acsess to data
- Legal challenge in third country transfer of personal data
- Data processing and technical / organizational measures for data security
- Impact assessment
- Legal requirement for IT security management
- Data protection by design and by default
- IT Security Law and the KRITIS Regulation
- EU Directive on Network and Information Security (NIS Directive)
- NIS Directive Implementation act
- Law on computer crime: computer sabotage, § 303b Criminal Code (StGB), preparation, conduct of the spying out and interception of electronic data, § 202a StGB; Computer fraud, § 263a StGB, Data modification, § 303a StGB
|
| Recommended Prerequisites: | None |
| Mandatory Prerequisites: | None |
| Forms of Teaching and Proportion: | -
Lecture
/ 4 Hours per Week per Semester
-
Self organised studies
/ 120 Hours
|
| Teaching Materials and Literature: | Will be provided at the beginning of the course.
|
| Module Examination: | Final Module Examination (MAP) |
| Assessment Mode for Module Examination: | - Written examination, 90 min. OR
- Oral examination, 30-45 min. (with small number of participants)
In the first lecture it will be anounced, if the examination will be offered in written or oral form. |
| Evaluation of Module Examination: | Performance Verification – graded |
| Limited Number of Participants: | None |
| Part of the Study Programme: | -
Abschluss im Ausland /
Betriebswirtschaftslehre /
keine PO
-
Abschluss im Ausland /
Cyber Security /
keine PO
-
Master (research-oriented) /
Cyber Security /
PO 2017
-
Abschluss im Ausland /
Informatik /
keine PO
-
Abschluss im Ausland /
Städtebau und Stadtplanung /
keine PO
-
Abschluss im Ausland /
Stadtplanung /
keine PO
|
| Remarks: | - Study programme Cyber Security M.Sc.: Mandatory module
|
| Module Components: | - Lecture: IT Law
- Related examination
|
| Components to be offered in the Current Semester: | |
