Course detail

Management Information Security

FP-ImibeKAcad. year: 2020/2021

Information Security Management is focused on the security aspects of information systems and to explore the basic elements of creating security policies of the organization. It is to introduce students to the main areas and directions of the implementation of security measures and to acquaint them with their policies.

Learning outcomes of the course unit

Emphasis is also placed on acquiring knowledge of current methodologies of information security management in ERP systems.

Prerequisites

Knowledge of information systems, computer networks, operating systems and basic programming.

Co-requisites

Not applicable.

Recommended optional programme components

Not applicable.

Recommended or required reading

Doseděl, T.: Počítačová bezpečnost a ochrana dat. Brno : Computer Press 2004.
ČSN ISO/IEC 27001, Úřad pro technickou normalizaci, metrologii a státí zkušebnictví (ÚNMZ), 2006
ČSN ISO/IEC 17799, Úřad pro technickou normalizaci, metrologii a státí zkušebnictví (ÚNMZ), 2006
Časopis DSM - Data Security Management. Vyd. Tate International, Praha.
Doucek, P.,Novák, L.,Svatá, V. Řízení bezpečnosti informací.Příbram:Professional Publishing,2008.239s. ISBN 978-80-86946-88-7.
Northcutt, S. Bezpečnost počítačových sítí. Brno : Computer Press, 2005.
Kovacich, G.L. Průvodce bezpečnostního pracovníka informačních systémů. Praha : Unis Publishing, 2000.

Planned learning activities and teaching methods

The course contains lectures that explain basic principles, problems and methodology of the discipline, and exercises that promote the practical knowledge of the subject presented in the lectures.

Assesment methods and criteria linked to learning outcomes

It will be specified by teacher.

Language of instruction

Czech

Work placements

Not applicable.

Course curriculum

1. Digital literacy.
2. Basic terminology of ISMS.
3. Definition of ISMS.
4. Implementation methodology of ISMS.
5. Risk analysis.
6. Security controls.
7.Security standards and norms.
8. Network security management.
9. Application security management.
10. Information security for supplier relationships.
11. Data security management.
12. Personaly security issues.
13. Safety legislation and the regulatory environment.

Aims

The course aims to introduce students to the main areas and directions of the implementation of security measures and to acquaint them with their policies.

Specification of controlled education, way of implementation and compensation for absences

It will be specified by teacher.

Classification of course in study plans

  • Programme MGR-IM-KS Master's, 1. year of study, winter semester, 3 credits, compulsory

Type of course unit

 

Guided consultation in combined form of studies

12 hours, optionally

Teacher / Lecturer