639-0822/01 – Information Security Management Systems (ISMS)

Gurantor departmentDepartment of Quality ManagementCredits7
Subject guarantorIng. Václav ŠtverkaSubject version guarantorIng. Václav Štverka
Study levelundergraduate or graduateRequirementChoice-compulsory
Year1Semestersummer
Study languageCzech
Year of introduction2007/2008Year of cancellation
Intended for the facultiesFMTIntended for study typesFollow-up Master
Instruction secured by
LoginNameTuitorTeacher giving lectures
STV06 Ing. Václav Štverka
Extent of instruction for forms of study
Form of studyWay of compl.Extent
Full-time Credit and Examination 3+2
Combined Credit and Examination 16+0

Subject aims expressed by acquired skills and competences

- The subject is coming out from the requirements of the information security management system and gives the basic survey of the specifications which are necessary to fulfil for successful implementation - It gives the theoretic basement of the ISMS requirements, its understanding and aplication in to the practice - It acquaints with the requirements of the standards like as series of 2700x - The subject aquaints with the procedures and practices for ISMS internal audits according to the ISO/IEC 27001 - The subject is to give overall overview about requirements and range of the ISMS implementation project according to the ISO/IEC 27001 standard Undergraduates should be able: - to hold a position of the information security management system manager (ISMS manager), - to execute ISMS internal audits according to the ISO/IEC 27001, - to implement the information security management systém in any organization.

Teaching methods

Lectures
Tutorials
Project work

Summary

The subject is focused on the basic information about implementation and maintenance of the information security management system

Compulsory literature:

Ing. Václav Štverka, CISA, CISM: INFORMATION SECURITY MANAGEMENT SYSTEM ACCORDING TO ISO/IEC 27001:2005, PRESENTATION Standards ISO/IEC 27000 Information technogy - Security techniques - Information security management system - Overview and vocabulary ISO/IEC 27001 Information technology — Security techniques — Information security management systems — Requirements ISO/IEC 27002 (ISO/IEC 17799:2006) Information technology — Security techniques — Code of practice for information security management

Recommended literature:

ISO/IEC 27005 Information technogy - Security techniques - Information security management system - Risk management

Way of continuous check of knowledge in the course of semester

E-learning

Další požadavky na studenta

Prerequisities

Subject has no prerequisities.

Co-requisities

Subject has no co-requisities.

Subject syllabus:

- Theoretical basic of the requirements for ISMS. - Application of these requirements for ISMS in practice. - ISMS implementation. - Standards ISO/IEC 2700x. - Internal audits of ISMS (ISO/IEC 27001).

Conditions for subject completion

Full-time form (validity from: 1960/1961 Summer semester)
Task nameType of taskMax. number of points
(act. for subtasks)
Min. number of points
Exercises evaluation and Examination Credit and Examination 100 (100) 51
        Exercises evaluation Credit 40 (40) 0
                Other task type Other task type 40  0
        Examination Examination 60 (60) 0
                Oral Oral examination 60  0
Mandatory attendence parzicipation:

Show history

Occurrence in study plans

Academic yearProgrammeField of studySpec.FormStudy language Tut. centreYearWSType of duty
2014/2015 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2014/2015 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan
2013/2014 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan
2013/2014 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2012/2013 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan
2012/2013 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2011/2012 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan
2011/2012 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2010/2011 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2010/2011 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan
2009/2010 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan
2009/2010 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2008/2009 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2008/2009 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan
2007/2008 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management K Czech Ostrava 1 Choice-compulsory study plan
2007/2008 (N3922) Economics and Management of Industrial Systems (3902T041) Quality Management P Czech Ostrava 1 Choice-compulsory study plan

Occurrence in special blocks

Block nameAcademic yearForm of studyStudy language YearWSType of blockBlock owner