PA211 Advanced Topics of Cyber Security

Faculty of Informatics
Spring 2023
Extent and Intensity
1/2/1. 3 credit(s) (plus extra credits for completion). Type of Completion: zk (examination).
Teacher(s)
doc. Ing. Pavel Čeleda, Ph.D. (lecturer)
Mgr. Daniela Belajová (lecturer)
Mgr. Ádám Ruman (lecturer)
RNDr. Lukáš Sadlek (lecturer)
doc. RNDr. Jan Vykopal, Ph.D. (lecturer)
Bc. Adam Chovanec (seminar tutor)
Mgr. Andrej Tomči (seminar tutor)
RNDr. Petr Velan, Ph.D. (seminar tutor)
Guaranteed by
doc. Ing. Pavel Čeleda, Ph.D.
Department of Computer Systems and Communications – Faculty of Informatics
Supplier department: Department of Computer Systems and Communications – Faculty of Informatics
Timetable
Tue 14. 2. to Tue 9. 5. Tue 10:00–12:50 A219
Prerequisites
( PA159 Net-Centric Computing I || PA191 Advanced Computer Networking ) && PV004 UNIX
The course is offered only to master students. It is recommended to pass PV276 or enrol it in parallel.
Course Enrolment Limitations
The course is also offered to the students of the fields other than those the course is directly associated with.
The capacity limit for the course is 15 student(s).
Current registration and enrolment status: enrolled: 2/15, only registered: 0/15, only registered with preference (fields directly associated with the programme): 0/15
fields of study / plans the course is directly associated with
Course objectives
The general objective of the course is to introduce advanced topics of security operations in an organization. The course covers specific knowledge and skills required for the work role of Cyber Defense Infrastructure Support Specialist (PR-INF-001), Systems Security Analyst (OM-ANA-001), and Vulnerability Assessment Analyst (PR-VAM-001) as defined by the NICE Cybersecurity Workforce Framework (see https://niccs.cisa.gov/workforce-development/cyber-security-workforce-framework/).
Learning outcomes
At the end of the course, a student should be able to:
conduct vulnerability scans and recognize vulnerabilities in systems and applications,
conduct authorized penetration testing on enterprise network and applications,
apply selected countermeasures to harden (secure) networks, operating systems, and applications.
Syllabus
  • Asset management.
  • Vulnerability management.
  • Threat management.
  • Penetration testing – introduction, process, report and presentation.
  • Hardening of operating system, and applications.
Literature
  • J. Muniz, G. McIntyre, and N. AlFardan, Security Operations Center: Building, Operating, and Maintaining Your SOC. Cisco Press, 2015.
  • The Center for Internet Security. CIS Benchmarks, 2022. https://www.cisecurity.org/cis-benchmarks/ • NIST. National Checklist Program (NCP), 2022. https://ncp.nist.gov/repository
  • OWASP. OWASP Web Security Testing Guide, 2022. https://owasp.org/www-project-web-security-testing-guide/
  • TEVAULT, Donald A. Mastering Linux Security and Hardening: Protect your Linux systems from intruders, malware attacks, and other cyber threats. Packt Publishing Ltd, 2020.
Teaching methods
Lectures, weekly seminars, homework assignments during the semester.
Assessment methods
Assignments during the semester (60 %), practical exam (40 %).
Language of instruction
English
Further comments (probably available only in Czech)
Study Materials
The course is taught annually.
Teacher's information
The course will be taught in Spring semesters only.
The course is also listed under the following terms Spring 2016, Spring 2017, Spring 2018, Spring 2019, Autumn 2022, Spring 2024, Spring 2025.
  • Enrolment Statistics (Spring 2023, recent)
  • Permalink: https://is.muni.cz/course/fi/spring2023/PA211