FP-BbezPAcad. year: 2020/2021
The course focuses on the following topics: information security and availability in IS, communication security, security strategy and security management.
Learning outcomes of the course unit
Students will gain a basic knowledge of information security - possible security threats, security measures.
After completing the course students will be able to classify assets, analyse security risks in IS / IT and propose comprehensive solutions for their prevention, so as to create security company strategy and proposed safety management system of firm.
Computer literacy, knowledge of operating systems, computer networks, cryptography.
Recommended optional programme components
Recommended or required reading
DOUCEK, P., L. NOVÁK, L. NEDOMOVÁ a V. SVATÁ. Řízení bezpečnosti informací. 2.vyd. Praha: Professional Publishing, 2011. 240 s. ISBN 978-80-7431-050-8
ONDRÁK, V: Management informační bezpečnosti. Brno, 2015, Skriptum FP VUT – dostupné v elektronické podobě.
ONDRÁK, V., P. SEDLÁK, V. MAZÁLEK. Problematika ISMS v manažerské informatice. Brno: CERM. 2013, 378 s. ISBN 978-80-7204-872-4.
Planned learning activities and teaching methods
The course contains lectures that explain basic principles, problems and methodology of the discipline.
Assesment methods and criteria linked to learning outcomes
The course is concluded by a course-unit credit:
Conditions for passing a course-unit credit: Knowledge of taught topics and its practical application.
Students must pass a written test of 40 questions, must correctly answer at least 20 questions, according to ECTS classification.
Language of instruction
1. Introduction to IS / ICT security, basic concepts
2. Information assets
3. Security events, security incidents
4. Security threats
5. Security risk management
6. Safety precautions
7. Information security management systems
8. Standards of the ISO / IEC 27000 series
9. Implementation of ISMS
10. Operation of ISMS
11. Review, audit, ISMS certification
12. The Cyber Security Act
13. EU-NIS Directive, GDPR
The main objective of the course is to provide students with the necessary knowledge with respect to IS/IT security, to teach them how to apply the risk analysis as well as to design corporate safety strategy of firm.
Specification of controlled education, way of implementation and compensation for absences
Attendance at lessons is not checked. The course consists of lectures only, and the attendance at them is not compulsory.
Classification of course in study plans
- Programme BAK-PM Bachelor's, 2. year of study, summer semester, 4 credits, compulsory-optional