639-3009/01 – Information Security Management Systems (ISMS)
Gurantor department | Department of Quality Management | Credits | 5 |
Subject guarantor | Ing. Václav Štverka | Subject version guarantor | Ing. Václav Štverka |
Study level | undergraduate or graduate | Requirement | Choice-compulsory |
Year | 1 | Semester | summer |
| | Study language | Czech |
Year of introduction | 2014/2015 | Year of cancellation | 2020/2021 |
Intended for the faculties | FMT | Intended for study types | Follow-up Master |
Subject aims expressed by acquired skills and competences
- The subject gives the theoretic basement of the ISMS requirements, its understanding and aplication in to the practice
- It acquaints with the requirements of the standards like as series of 2700x
- The subject aquaints with the procedures and practices for ISMS internal audits according to the ISO/IEC 27001
- The subject is to give overall overview about requirements and range of the ISMS implementation project according to the ISO/IEC 27001 standard
Undergraduates should be able:
- to hold a position of the information security management system manager (ISMS manager),
- to execute ISMS internal audits according to the ISO/IEC 27001,
- to implement the information security management systém in any organization.
Teaching methods
Lectures
Tutorials
Summary
The subject is coming out from the requirements of the information security management system and gives the basic survey of the specifications which are necessary to fulfil for successful implementation.
Compulsory literature:
[1] ISO/IEC 27001 Information technology — Security techniques — Information security management systems — Requirements, ISO, Geneva, Switzerland.
[2] Edward Humphreys & Angelika Plate, BIP 0071:2005: Guidelines on requirements and preparations for ISMS certification based on ISO/IEC 27001, BSI London, UK.
Recommended literature:
[1] ISO/IEC 27005 Information technogy - Security techniques - Information security management system - Risk management.
Way of continuous check of knowledge in the course of semester
E-learning
Other requirements
Elaboration of the semester project (cca 10 pages) and running tests.
Prerequisities
Subject has no prerequisities.
Co-requisities
Subject has no co-requisities.
Subject syllabus:
- Theoretical basic of the requirements for ISMS.
- Application of these requirements for ISMS in practice.
- ISMS implementation.
- Standards ISO/IEC 2700x.
- Internal audits of ISMS (ISO/IEC 27001).
Conditions for subject completion
Occurrence in study plans
Occurrence in special blocks
Assessment of instruction