11891 - IT Security Law Modulübersicht

Module Number: 11891
Module Title:IT Security Law
  IT-Sicherheitsrecht
Department: Faculty 1 - Mathematics, Computer Science, Physics, Electrical Engineering and Information Technology
Responsible Staff Member:
  • Prof. Dr.-Ing. Panchenko, Andriy
Language of Teaching / Examination:English
Duration:1 semester
Frequency of Offer: Every winter semester
Credits: 6
Learning Outcome:The student acquire basic knowledge in data protection law with references to data security, in order to carry out appropriate IT tasks in a company and communicate with data protection officers and legal department, or to audit and consult companies. They also acquire comprehension of basic principles of the IT security law, in order to be able to communicate with the Federal Office for Information Security. Furthermore they get to know principles of the EU Directive on security of network and information systems (NIS Directive) and the Federal NIS Directive Implementation Act, likewise principles of the criminal offenses related to IT security, in order to recognize in practice whether the legal department should be informed in the event of an incident.
Contents:
  • Basic concepts and principles of data protection law - EU General Data Protection Regulation and German Accompanying Law
  • Legal requirements for technical and organizational measures for data protection
  • Oblication to report unlawful acsess to data
  • Legal challenge in third country transfer of personal data
  • Data processing and technical / organizational measures for data security
  • Impact assessment
  • Legal requirement for IT security management
  • Data protection by design and by default
  • IT Security Law and the KRITIS Regulation
  • EU Directive on Network and Information Security (NIS Directive)
  • NIS Directive Implementation act
  • Law on computer crime: computer sabotage, § 303b Criminal Code (StGB), preparation, conduct of the spying out and interception of electronic data, § 202a StGB; Computer fraud, § 263a StGB, Data modification, § 303a StGB
Recommended Prerequisites:None
Mandatory Prerequisites:None
Forms of Teaching and Proportion:
  • Lecture / 4 Hours per Week per Semester
  • Self organised studies / 120 Hours
Teaching Materials and Literature:Will be provided at the beginning of the course.

Module Examination:Final Module Examination (MAP)
Assessment Mode for Module Examination:
  • Written examination, 90 min. OR
  • Oral examination, 30-45 min. (with small number of participants)
In the first lecture it will be anounced, if the examination will be offered in written or oral form.
Evaluation of Module Examination:Performance Verification – graded
Limited Number of Participants:None
Part of the Study Programme:
  • Abschluss im Ausland / Betriebswirtschaftslehre / keine PO
  • Abschluss im Ausland / Cyber Security / keine PO
  • Master (research-oriented) / Cyber Security / PO 2017
  • Abschluss im Ausland / Informatik / keine PO
  • Abschluss im Ausland / Städtebau und Stadtplanung / keine PO
  • Abschluss im Ausland / Stadtplanung / keine PO
Remarks:
  • Study programme Cyber Security M.Sc.: Mandatory module
Module Components:
  • Lecture: IT Law
  • Related examination
Components to be offered in the Current Semester: