This course covers issues concerning management of risks, which both digital information and network assets in an organization are exposed to, and provides information and guidelines that can help with the establishment of a framework to assure that information security strategies are aligned with the objectives of the business and are consistent with legal and regulatory obligations. Topics include existing risk management frameworks, models, processes and tools to equip students with the theory, science and practical knowledge to deal appropriately with risk in an enterprise.