Syllabus
Registration via LPIS
This course discusses the responsible control and regulation of the design and use of digital technologies in information-based organizations, which are essential for the functioning of the information society. It provides a comprehensive overview of Governance, Risk, and Compliance (GRC) for organizations acting in cyberspace. The course equips participants with the theoretical knowledge and practical skills to address organizational challenges in a digitally transforming world and successfully implement GRC initiatives, such as the EU AI Act. Students will examine the foundations of GRC, organizational governance, compliance frameworks, risk assessment, and auditing methodologies. Participants will gain hands-on experience by working on case studies and applying their knowledge to a capstone GRC project, ensuring they are prepared to implement governance strategies effectively in real-world scenarios of digital transformation.
- Understand internal and external compliance requirements for organizations operating in cyberspace
- Know the regulatory landscape relevant to the cyberspace
- Apply risk management methods and GRC tools in an organization
- Understand organizational culture and institutional structure as key success factors for GRC initiatives in organizations operating in cyberspace
- Being able to introduce and operate management systems for controlling risks and chances of the organization in cyberspace
- Acquire communication skills necessary for implementing a GRC initiative in an organization
Attendance in the first unit and overall for 80% of the time is required. Attendance in the first unit is mandatory (unqualified absence will result in deregistration from the course).
The course will include interactive teaching, video expert interviews and group work. Moreover, students will work on a GRC project applying the knowledge acquired throughout the course to a coherent corporate case. Teaching will be research-driven based on multiple levels of analysis:
Level of analysis | Teaching design |
Theoretical level | Discussing theories with underlying cause and effect relationships for explaining and predicting the agency of organizations and regulatory bodies in cyberspace. |
Social level | Discussing models of organizational culture and social norms related to GRC in cyberspace and video interviews with experts in politics, of regulatory bodies, and NGOs. |
Institutional level | In-class exercises and discussion on standards, regulation, management frameworks and best practices for implementing GRC initiatives in organizations. |
Pragmatic level | Application of selected management systems in a contextualized corporate GRC project. Working on case studies in groups. |
The grade will be based upon the following components:
55% Deliverables on applied GRC project
35% Exam on the concepts discussed in class
10% In-class exercises and participation
Please log in with your WU account to use all functionalities of read!t. For off-campus access to our licensed electronic resources, remember to activate your VPN connection connection. In case you encounter any technical problems or have questions regarding read!t, please feel free to contact the library at readinglists@wu.ac.at.
Back