Provide the student with an overview of the risks related to the widespread of ICT. Provide the student with the competences that are necessary to assess the relevant areas of cybercrime. Study of cybersecurity from a legal and regulatory point of view, following an integrated approach that takes into account the interdisciplinary nature that characterizes the course.

Knowledge and understanding: The student will gain full knowledge of cybercrime and illicit activities committed through the use of ICT. The student will also be able to identify relevant compliance measures in relation to cybersecurity and corporate liability. Such knowledge will be ascertained through the evaluation of classroom presentations by students. At the end of the course, an oral exam will be held. Applying knowledge and understanding: The student, thanks to the knowledge of the basics of cybersecurity, will be able to apply, also with regard to the resolution of practical cases, the relevant notions to define the individual and collective liability related to the management of the so-called “cyber risk”. In this way, the student will have the basic knowledge of the subject necessary to work as a professional within companies that use information systems. The student will also be able to link the notions learned with topics related to other academic disciplines (e.g. management, legal computer science, information security). The student will be able to apply the criminal law legal doctrine for the resolution of practical cases as well as for oral presentations. This knowledge will be evaluated taking into account the results of individual presentations and the final exam. The presence of media content on the e-learning platform and the participation to the workshops will allow to verify in real time the hard and soft skills acquired by students. Making judgments: By using a correct study and research methodology acquired during the course, the student will be able to collect data and materials to analyze relevant regulations as well as the case law and the legal doctrine related to the offences considered. The student will also be able to identify basic compliance measures to address cybersecurity risks in corporate organizations. The student will gain the ability to evaluate data and materials independently and to formulate his own critical judgment on the application of the fundamental principles and categories of criminal law to practical cases. Communication skills: At the end of the course the student will be able to use the basic ‘dictionary’ of cybersecurity, addressing the legal issues submitted to his attention with fluency and using the proper technical language. The student will be able to apply these communication skills in different contexts. The student will acquire argumentative skills as well as the ability to adapt the terms used to the context and to his/her interlocutor. Learning skills: The knowledge acquired during the course will allow the student to independently understand and interpret regulatory changes, connecting the concepts learned to the ‘special part’ of criminal law. The knowledge and application of these principles and institutes during the course will also provide the student with that solid knowledge of the fundamental aspects of criminal discipline necessary to undertake different postgraduate specializations. In addition, through participation to the workshops, the student will be able to use the basic methodologies to design and present the results of research not only in the criminal law field, but also in the management/corporate compliance sector.

Study of regulatory policies on cybersecurity at national and international level; prevention and repression of cybercrime; digital privacy; data protection policies; new frontiers of cybersecurity. Principles and basics of cybersecurity. Cyberattacks Cybercrime in general and regulatory sources of computer-related offences Financial cybercrime and online frauds Individual protection and cyberspace New frontiers of ICT and criminal justice system Protection measures, corporate liability and international cooperation

Severino, Paola e Gullo, Antonio (eds.). Diritto penale e cybersecurity. Torino: Giappichelli, 2025.

Theoretical lessons; sharing of information/experience; practical workshops.

The final exam consists of an oral interview and the student shall demonstrate that he/she has achieved the expected learning outcomes, firstly with regard to the necessary knowledge of the relevant areas of cybercrime included in the course programme. The student shall also demonstrate his/her ability to identify basic compliance measures to address cybersecurity risks in corporate organizations. The student shall be able to use an appropriate legal vocabulary and to give a correct legal qualification to concrete cases. The student is also expected to prove that he/she is able to independently analyse relevant legislation and case law, as to develop an autonomous ability to study the subject. The grade will be awarded in thirtieths and the following evaluation criteria will be taken into account: - knowledge and understanding of the offences included in the course programme, ability to assess and manage cybersecurity risks (70 %); appropriate use of the technical and legal vocabulary, ability to independently evaluate and analyse relevant sources, activities carried out during the course (30%). On the basis of the assessment criteria described above, for students who have attended at least 80 % of the lectures: participation in the mock trials will be considered for 30 % in the final examination. The remaining 70 % of the mark will be attributed according to the assessment methods and criteria specified above in the context of the final oral interview. Learning gaps concerning one or more notions or offences will lead to an insufficient evaluation, even in presence of a basic knowledge of the matter.

Interest in the course; good result/grades in the evaluation; good presentation in the working groups.