Veidlapa Nr. M-3 (8)
Study Course Description
Protection of the Critical Infrastructure
Course Code
SZF_157
Branch of Science
-
ECTS
4.00
Target Audience
Civil and Military Defense; Management Science; Political Science
LQF
Level 7
Study Type And Form
Full-Time
Study Course Implementer
Course Supervisor
Vitālijs Rakstiņš
Structure Unit Manager
Ieva Puzo
Structural Unit
Faculty of Social Sciences
Contacts
Dzirciema street 16, Rīga, szf@rsu.lv
About Study Course
Objective
The aim of the course is to provide structured knowledge on the protection of critical infrastructure, including against hybrid threats. The course will cover current threats and challenges, critical infrastructure security and business continuity issues. In the practical sessions of the course, students will be provided with the necessary basic knowledge on civil protection, physical and digital security and business continuity of critical infrastructures.
Preliminary Knowledge
Basic knowledge of what constitutes a hybrid threat, including its components such as cyber-attacks, disinformation campaigns, and other non-conventional means of conflict, is necessary.
Learning Outcomes
Knowledge
1.Understands the critical infrastructure framework, legal frameworks and standards, and current trends. Has an in-depth knowledge of critical infrastructure security and business continuity issues.
Skills
1.Students demonstrate the ability to think in terms of organisational security, to independently obtain and gather information, analyse risks and predict causal relationships, and to prepare necessary documents, reports, presentations and publications. Students are able to argue and debate critical infrastructure protection issues. They are able to apply the acquired knowledge and skills in planning the operational security and business continuity of an organisation.
Competences
1.Students are competent in dealing with the high complexity of critical infrastructure protection issues. They are able to integrate knowledge from different fields, contributing to the creation of new knowledge.
Assessment
Individual work
|
Title
|
% from total grade
|
Grade
|
|---|---|---|
|
1.
Individual work |
-
|
-
|
|
1. Attendance of seminars and lectures – mandatory, 20% (the lecturer evaluates the student's participation and activity in lectures and seminars).
2. Permanent work (group work/synopsis/analysis) and presentation – mandatory, 30% (the lecturer evaluates the student's skills: to keep the audience's attention, the ability to find and select viable innovative ideas, to discuss the latest trends in the context of the study course topics).
3. Development of summaries – mandatory, 20% (the lecturer assesses the student's ability to independently obtain, select and analyse information in the context of the study course).
4. Examination – mandatory, 30% (the lecturer assesses the student's knowledge and understanding in the context of the study course topics).
|
||
Examination
|
Title
|
% from total grade
|
Grade
|
|---|---|---|
|
1.
Examination |
-
|
-
|
|
A final grade will be determined based on audience participation, group assignments, presentations, final work and exams.
|
||
Study Course Theme Plan
FULL-TIME
Part 1
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
What is critical infrastructure. Regulation, institutional framework. Today's challenges and growing threats. Developing a risk management plan. ISO 31000. Challenges with hybrid threats and military threats. National regulation.
|
-
Class/Seminar
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Workshop. Risk assessment of selected infrastructure assets.
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Civil protection of critical infrastructure. High risk facilities. Practical assessment of a regional civil protection/response plan. Discussion.
|
-
Class/Seminar
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Civil protection of critical infrastructure. High risk facilities. Practical assessment of a regional civil protection/response plan. Discussion.
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Kinetic protection of critical infrastructure. Regulation, requirements. Industrial safety certificates. Duty to care. Duty to protect. Internal threats. Personnel screening. Critical personnel.
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Economic and strategic protection of critical infrastructure. Foreign experience. Role of the Cabinet of Ministers. Scrutiny of foreign direct investment. Due diligence. EU framework and National Security Law.
|
-
Class/Seminar
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Practical seminar, case study. Test (on the first five topics).
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Critical infrastructure cyber security. International standards. Regulatory framework. Institutional framework. NIS2 requirements. Supply chain security. Use of third country software and equipment. Foreign experience.
|
-
Class/Seminar
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Individual work on the physical and digital security system for the selected site.
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Preventing hybrid threats. Sabotage. Disruptive technologies. UAV threats. Foreign examples.
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Terrorism and diversion. Concepts, historical overview. Counter-terrorism measures. National action plans. Risk mitigation measures for infrastructure facilities. Foreign experience.
|
-
Class/Seminar
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Case studies. Test (on the previous four topics).
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
The concept of continuity of essential services in times of crisis. National resilience framework. Critical Infrastructure Category D. Foreign experience. Business continuity plan.
|
-
Lecture
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Military scenario. Critical infrastructure protection in war. The Ukrainian experience. War game scenario.
|
-
Class/Seminar
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Workshop - development and discussion of individual business continuity plans.
|
-
Class/Seminar
|
Modality
|
Location
|
Contact hours
|
|---|---|---|
|
On site
|
Auditorium
|
2
|
Topics
|
Exam.
|
Total ECTS (Creditpoints):
4.00
Contact hours:
32 Academic Hours
Final Examination:
Exam
Bibliography
Required Reading
1.
Directive (EU) 2022/2557 of the European Parliament and of the Council of 14 December 2022 on the resilience of critical entities.
2.
Nacionālās drošības likums/National Security Law
3.
Hybrid CoE. (2023). Hybrid threats: A comprehensive resilience ecosystem (CORE).
4.
OECD. (2019). Resilience Strategies and Approaches to Contain Systematic Threats.
5.
Council of the European Union (2019). Council Conclusions on Complementary efforts to enhance resilience and counter hybrid threats.
6.
Making Critical Infrastructure Resilient: Ensuring Continuity of Service - Policy and Regulations in Europe and Central Asia. United Nations Office for Disaster Risk Reduction. (2020).
7.
Critical Infrastructure Resilience Institute. (2024). Conducting research and education to enhance the resiliency of the nation’s critical infrastructures.
8.
OECD. (2020). Good governance for critical infrastructure resilience.
Additional Reading
1.
Building resilience for the future – Lessons from Ukraine.
2.
Standard ISO 31000:2018 - Risk management - Guidelines
3.
Nordic Societal Security. Sebastian Larsson & Mark Rhinard. London: Routledge, (2020). 268.lpp. ProQuest Ebook Central Academic Complete
4.
OECD Recommendation on the Governance of Critical Risks. (2014).
5.
International standard ISO 22301:2019 Security and resilience. Business continuity management systems.
6.
UN Guiding Principles on Business and Human Rights. UN Human Rights Council 2011.06.16. resolution No.17/4/Human rights and transnational corporations and other business enterprises
7.
Roepke, Wolf-Diether and Hasit Thankey. “Resilience: the first line of defence.” NATO Review, 27 February 2019.
8.
The Failure of Risk Management: Why It's Broken and How to Fix It. 2nd Edition. Douglas W. Hubbard. (2020). 336.lpp. Ebook Central Academic Complete
9.
RAND research: Deterring Russian Aggression in the Baltic States Through Resilience and Resistance. (2019).
10.
OECD. (2020). Good governance for critical infrastructure resilience.
11.
Bouncing forward: a resilience approach to dealing with COVID-19 and future systemic shocks.
12.
Romanyshyn, L. (2023). Ukraine’s Total Democratic Resilience in the Shadow of Russia’s War. Carnegie Europe. Ukraine’s Total Democratic Resilience in the Shadow of Russia’s War - Carnegie Europe - Carnegie Endowment for International Peace.
13.
Praktyka, T.I., Reczkowski, R.S., & Lis, A. (2022). Cognitive Warfare: what is our actual knowledge and how to build state resilience? [PDF] Cognitive Warfare: what is our actual knowledge and how to build state resilience? | Semantic Scholar
Other Information Sources
1.
The Hybrid Threat Centre of Excellence various studies, articles, and analyses on hybrid threats.