Objectives and competences
The student will be able to
1. Understand the fundamental concepts of information security.
2. Implement the confidentiality, integrity and availability criteria into organization and business.
Content (Syllabus outline)
1. Fundamental concepts of information security: availability, integrity, confidentiality
2. Definition and classification of security threats
3. Basic concepts of IT infrastructure reliability and availability
4. Basic concepts of physical security
5. Basic concepts of logical security
6. Basic organizational countermeasures for providing of information security
7. Implementation of information security management system into an organization
Learning and teaching methods
• Lectures,
• Tutorial and computer work,
• e-Learning using the Moodle online classroom,
• Laboratory work.
Intended learning outcomes - knowledge and understanding
After successful completion of the course, the student will be able to:
• Explain the importance of information security for business continuity.
• Identify potential security threats and consequences of their realization.
• Plan and apply suitable information security measures and mechanisms.
Intended learning outcomes - transferable/key skills and other attributes
- Implementation of adequate security measures and mechanisms in practice,
- Definition and implementation of an information security policy in an organization.
Readings
1. Stallings, W. (2023). Cryptography and network security: principles and practice (8th ed., global ed., str. 832). Pearson.
2. Stallings, W., & Brown, L. (2018). Computer security: principles and practice (4th ed., global ed., str. 800). Pearson.
3. Information security management principles (3rd ed., str. XIX, 248). (2020). BCS, The Chartered Institute for IT.¸
4. International standard. ISO/IEC 27001, Information security, cybersecurity and privacy protection - Information security management systems - Requirements, = Sécurité de l'information, cybersécurité et protection de la vie privée - Systemes de management de la sécurité de l'information - Exigences (3rd ed., str. V, 19). (2022). ISO copyright office.
5. International standard. ISO/IEC 27002, Information security, cybersecurity and privacy protection - information security controls, = Sécurité del l'information, cybersécurité et protection de la vie privée - mesures de sécurité del l'information (3th ed., str. 152). (2022). ISO copyright.
Additional information on implementation and assessment Coursework , (20%)
Computer skills, (40%)
Written exam.(40%)
Note:
Criteria for passing the exam:
at least 50% of the maximum score at courseworks, at least 50% of the maximum score at computer skills , and at least 50% of the maximum score at the written exam.
