Fundamentals of Cyber Security and Protecting Systems Against Cyber Attacks

Title	% from total grade	Grade
1. Individual work	-	-
Students independently prepare for classes by reading and analyzing the materials offered by the lecturer, analyzing the necessary information, as well as analyzing the possibilities of devices, software and systems (see the list of mandatory literature and additional sources of information to be used), read the additional literature offered by the lecturer, and complete the tasks prepared by the lecturer. In order to evaluate the quality of the study course as a whole, the student must fill out the study course evaluation questionnaire on the Student Portal.

Title	% from total grade	Grade
1. Examination	-	-
Class attendance at least 60% of the total number of classes (100%) Final examination – Differentiated examination, which is implemented in the form of a test. The test contains 30-40 multiple-choice questions.

Basic principles of ICT security, cyber security. Internal data protection regulations.

Basic principles of ICT security, cyber security. Internal data protection regulations.

General Data Protection Regulation.

General Data Protection Regulation.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Functions and responsibilities of the personal data protection specialist.

Functions and responsibilities of the personal data protection specialist.

Liability for violations in the field of personal data protection, information disclosure law.

Liability for violations in the field of personal data protection, information disclosure law.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Hardware and physical security – attacks and defenses. Video surveillance and room access control systems.

Hardware and physical security – attacks and defenses. Video surveillance and room access control systems.

Basic principles of information security, risk analysis, security management, technical means, security incidents.

Basic principles of information security, risk analysis, security management, technical means, security incidents.

Security management of information systems in organizations, employees responsible for IS security and employee training strategy in organizations. Basics of IS security auditing.

Security management of information systems in organizations, employees responsible for IS security and employee training strategy in organizations. Basics of IS security auditing.

Construction of networks and critical infrastructure and its components. Interdependence of critical infrastructure networks, security risks and protection methods.

Construction of networks and critical infrastructure and its components. Interdependence of critical infrastructure networks, security risks and protection methods.

The principle of least privilege, access control and operating system security. Internet Protocol Security, TCP, DNS and Routing.

The principle of least privilege, access control and operating system security. Internet Protocol Security, TCP, DNS and Routing.

Unnecessary Data Flows: Types of Denial of Service Attacks. DoS and DDoS attacks.

Unnecessary Data Flows: Types of Denial of Service Attacks. DoS and DDoS attacks.

Cryptography. Encryption protocol SSL/TLS. HTTPS. Web security model, session management and user authentication

Cryptography. Encryption protocol SSL/TLS. HTTPS. Web security model, session management and user authentication

Security of cloud services and network data storage from both technical and legal aspects

Security of cloud services and network data storage from both technical and legal aspects

Not a label. Information as an object of legal protection.

Not a label. Information as an object of legal protection.

Criminal liability and administrative violations in the field of information security.

Criminal liability and administrative violations in the field of information security.

Safety measures planning, risk analysis. Unauthorized access to information, social engineering, confidentiality.

Safety measures planning, risk analysis. Unauthorized access to information, social engineering, confidentiality.

Types of threats to the property of individuals and companies in the network. Cyber security both at work and at home.

Types of threats to the property of individuals and companies in the network. Cyber security both at work and at home.

Basic principles of ICT security, cyber security. Internal data protection regulations.

Basic principles of ICT security, cyber security. Internal data protection regulations.

General Data Protection Regulation.

General Data Protection Regulation.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Concept of personal data protection, principles and purposes of personal data processing. Rights, obligations, limitations and responsibility of users of personal data.

Functions and responsibilities of the personal data protection specialist.

Functions and responsibilities of the personal data protection specialist.

Liability for violations in the field of personal data protection, information disclosure law.

Liability for violations in the field of personal data protection, information disclosure law.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Overview of attack types. Social engineering, indirect and brute force attacks. CSRF, XSS attacks, SQL injections.

Hardware and physical security – attacks and defenses. Video surveillance and room access control systems.

Hardware and physical security – attacks and defenses. Video surveillance and room access control systems.

Basic principles of information security, risk analysis, security management, technical means, security incidents.

Basic principles of information security, risk analysis, security management, technical means, security incidents.

Security management of information systems in organizations, employees responsible for IS security and employee training strategy in organizations. Basics of IS security auditing.

Security management of information systems in organizations, employees responsible for IS security and employee training strategy in organizations. Basics of IS security auditing.

Construction of networks and critical infrastructure and its components. Interdependence of critical infrastructure networks, security risks and protection methods.

Construction of networks and critical infrastructure and its components. Interdependence of critical infrastructure networks, security risks and protection methods.

The principle of least privilege, access control and operating system security. Internet Protocol Security, TCP, DNS and Routing.

The principle of least privilege, access control and operating system security. Internet Protocol Security, TCP, DNS and Routing.

Unnecessary Data Flows: Types of Denial of Service Attacks. DoS and DDoS attacks.

Unnecessary Data Flows: Types of Denial of Service Attacks. DoS and DDoS attacks.

Cryptography. Encryption protocol SSL/TLS. HTTPS. Web security model, session management and user authentication

Cryptography. Encryption protocol SSL/TLS. HTTPS. Web security model, session management and user authentication

Security of cloud services and network data storage from both technical and legal aspects

Security of cloud services and network data storage from both technical and legal aspects

Not a label. Information as an object of legal protection.

Not a label. Information as an object of legal protection.

Criminal liability and administrative violations in the field of information security.

Criminal liability and administrative violations in the field of information security.

Safety measures planning, risk analysis. Unauthorized access to information, social engineering, confidentiality.

Safety measures planning, risk analysis. Unauthorized access to information, social engineering, confidentiality.

Types of threats to the property of individuals and companies in the network. Cyber security both at work and at home.

Types of threats to the property of individuals and companies in the network. Cyber security both at work and at home.