Course detail
Management Information Security
FP-ImibePAcad. year: 2023/2024
Information Security Management is focused on the security aspects of information systems and to explore the basic elements of creating security policies of the organization. It is to introduce students to the main areas and directions of the implementation of security measures and to acquaint them with their policies.
Language of instruction
Czech
Number of ECTS credits
3
Mode of study
Not applicable.
Guarantor
Department
Entry knowledge
Knowledge of information systems, computer networks, operating systems and basic programming.
Rules for evaluation and completion of the course
It will be specified by teacher.
It will be specified by teacher.
It will be specified by teacher.
Aims
The aim of the course is to introduce students to the main principles of the Information Security Management System (ISMS) and directions in the implementation of security measures and to familiarize them with their individual areas.
Emphasis is also placed on gaining knowledge of current methodologies of information security management in enterprise IS, especially according to the ČSN ISO/IEC 27001 standard.
Emphasis is also placed on gaining knowledge of current methodologies of information security management in enterprise IS, especially according to the ČSN ISO/IEC 27001 standard.
Study aids
Not applicable.
Prerequisites and corequisites
Not applicable.
Basic literature
ČSN ISO/IEC 27000:2017 Informační technologie – Bezpečnostní techniky – Systémy řízení bezpečnosti informací – Přehled a slovník (CS)
Recommended reading
SMEJKAL, V. Kybernetická kriminalita. 2. vydání. Plzeň: Nakladatelství Aleš Čeněk, 2018. 936 str., ISBN 978-80-7380-720-7. (CS)
Classification of course in study plans
- Programme MGR-IM Master's 1 year of study, winter semester, compulsory
Type of course unit
Lecture
26 hod., optionally
Teacher / Lecturer
Syllabus
The aim of the course is a basic understanding of information security management (ISMS) in the complex concept of organizational management.
A follow-up objective is to understand the linkages in security issues from the individual to the organization.
Another objective is to introduce students to the main areas and directions in the implementation of security measures and to familiarize them with their principles.
1. Digital literacy
2. Basic concepts of information security management
3. Definition of information security management
4. Methodology of ISMS implementation
5. Security risk analysis
6. Security measures
7. Security standards
8. Network security management
9. Application security management
10. Supply chain security
11. Data protection management
12. Personal security and physical IT security issues.
13. Legal aspects of cyber security. Cybersecurity Act and implementing regulations.
A follow-up objective is to understand the linkages in security issues from the individual to the organization.
Another objective is to introduce students to the main areas and directions in the implementation of security measures and to familiarize them with their principles.
1. Digital literacy
2. Basic concepts of information security management
3. Definition of information security management
4. Methodology of ISMS implementation
5. Security risk analysis
6. Security measures
7. Security standards
8. Network security management
9. Application security management
10. Supply chain security
11. Data protection management
12. Personal security and physical IT security issues.
13. Legal aspects of cyber security. Cybersecurity Act and implementing regulations.