The aim of this course is gaining insight into basic security principles and methods, safety of information systems, understanding the life cycle of data and requirements in terms of their availability, confidentiality and integrity, and also gaining the ability to identify threats, vulnerabilities and risks in information systems, or in other words, ways to reduce or avoid those risks.

After completing the course, students will master the necessary terminology as well as a significant number of methods, techniques and skills in the field of security and safety of information systems, conforming to good practices and requirements of leading international standards. Also, students will be qualified for individual realization of systems for protection of information systems.

Throughout this course the content that will be covered is as follows: basic concepts, trends in development and application of protection of information systems, identification and classification of information resources, threats and vulnerabilities associated with them, backups – process of creation and their use after a catastrophic event, incidents associated with information safety, cryptography – the concept, purpose and procedures, application of cryptography in order to protect data, safety protocols, security of data in the cloud and protection of personal data.

The lectures include numerous examples and problem scenarios in the domain of security and safety of information systems, analysis of different strategies for information resources protection and their evaluation. Exercises are performed in the laboratory with the help of computers, and during these exercises individual work is encouraged as well as group work in developing and testing various systems for protection of organizations information resources.