Sep 17, 2019   4:23 a.m. Olympia
Academic information system

Course syllabus MBVIT_B - Management of IT Security. (FIIT - SS 2018/2019)

     Information sheet          ECTS          Syllabus          

     Slovak          English          

University: Slovak University of Technology in Bratislava
Faculty: Faculty of Informatics and Information Technologies
Course unit code: MBVIT_B
Course unit title: Management of IT Security.
Mode of delivery, planned learning activities and teaching methods:
lecture2 hours weekly (on-site method)
laboratory/construction practice2 hours weekly (on-site method)
project/semestral paper1 hour weekly (on-site method)

Credits allocated: 6
Recommended semester/trimester: Information Security - bachelor (compulsory), 6. semester
Level of study: 1.
Prerequisites for registration: none
Assesment methods:
In frame of exercise student must submit all assigned tasks and tasks must be accepted by Instructor. For this tasks student can earn 30 points. Further in frame of exercise student must pass two tests, each for 10 points as a maximum. Credits will not be assigned to a student who received from exercise less than 25 points. The final test is conducted in writing for 50 points as a maximum. Final student evaluation is the sum of points earned for exercise and final test. If the student earns at least 92 points then is assessed by the A grade, if earns at least 83 points then is assessed by the B grade, if earns at least 74 points then is assessed by the C grade, if earns at least 65 points then is assessed by the D grade, if earns at least 56 points then is assessed by the E grade, if earns less than 56 points then is assessed by the FX (fail).
Learning outcomes of the course unit:
By passing this module the student acquires the knowledge necessary for the design of the security management system and ensurance of individual parts of IT security management in practice. Student will gain practical knowledge of the security manager position, IT security manager position as well as security risk analyst, disaster recovery planning specialist, or building security awareness specialist.
Course contents:
1.IT security management system. Security elements. Constraints. Relations among security elements. Basic documentation of the IT security management system.
2.IT risks analyse and management. Choice of risk analysis strategy. Risk management. Choice of security measures. Acceptance of residual risks. IT security plan.
3.Security management in IT systems design and SW development. IT lifecycle. Security management of HW and SW platforms for IT system. HW and SW platform of IT system.
4.Security management during operation. Tools for IT system security management during operation. Monitoring of security status and its development. Tools for security status monitoring.
5.Disaster recovery planning. Recovery planning project. Analyse the business impact of an disaster on a company. Building IT security awareness.
6.Internal and external IT security audit. Audit of the IT security management system. HW and SW security audit. Audit of information service security.
Recommended or required reading:
TIPTON, H F. -- KRAUSE, M. Information Security: Management Handbook. Boca Raton : Auerbach Publications, 2007. 3231 p. ISBN 0-8493-7495-2.
DOBDA, L. Ochrana dat v informačných systémech. Praha : Grada Publishing, 1998. 286 p. ISBN 80-7169-479-7.

Látal, I.: Ochrana informací, dat a počítačových systému, EUROUNION, Praha, 1999
PELTIER, T.R.: Information Security : Policies and Procedures: A Practitioner's Reference. CRC Press - Auerbach Publications 1998
STN ISO/IEC 27000 sada noriem k systémom manažmentu informačnej bezpečnosti (ISMS – Information Security Management System)

Language of instruction: slovak and english
Courses evaluation:
Assessed students in total: 11

9,1 %45,5 %45,4 %0 %0 %0 %
Name of lecturer(s): Ing. Miroslav Galbavý (examiner, instructor, lecturer, tutor) - slovak
doc. Ing. Ladislav Hudec, CSc. (person responsible for course) - slovak
Last modification: 13. 4. 2018
Supervisor: doc. Ing. Ladislav Hudec, CSc. and programme supervisor

Last modification made by RNDr. Marta Gnipová on 04/13/2018.

Type of output: