|
Lecturer(s)
|
-
Chaloupka Josef, doc. Ing. Ph.D.
|
|
Course content
|
Lecture Topics: 1. Introduction to Practical Cybersecurity. Fundamental Security Principles. Common Threats and Attacks. Security Mindset and Administrator Responsibility. 2. Securing Desktop Systems. Windows and Unix Hardening. Updates and Patch Management. Antivirus Protection and EDR. Disk Encryption. 3. Identity and Access Management. Authentication and Authorization. Multi-Factor Authentication. Password Management. Principle of Least Privilege. 4. Fundamentals of Network Security. Firewalls and Network Segmentation. VPN and Secure Remote Access. Basics of IDS/IPS. 5. Securing Web Servers. Web Server Hardening. HTTPS and TLS Certificates. Secure Header Configuration. 6. Web Application Security. Common Vulnerabilities. Input Validation and Secure Programming. 7. Secure Data Storage. Data Encryption at Rest and in Transit. Password Hashing. Backup and Data Recovery. 8. Monitoring and Incident Detection. Logging and Auditing. Fundamentals of SIEM. Incident Response. 9. Security Testing. Basics of Penetration Testing. Security Checklists. 10. Secure Architecture Design. Defense in Depth. Practical Design of System Security. Laboratory sessions build on the topics covered in the lectures.
|
|
Learning activities and teaching methods
|
Monological explanation (lecture, presentation,briefing), Practicum
- Home preparation for classes
- 40 hours per semester
- Class attendance
- 40 hours per semester
- Preparation for exam
- 20 hours per semester
- Preparation for credit
- 20 hours per semester
|
|
Learning outcomes
|
This course focuses on the practical aspects of securing modern computer systems, including desktop environments, web servers, and web applications. Students will learn how to identify common vulnerabilities, assess risks, and implement effective security controls in real-world scenarios. Emphasis is placed on hands-on configuration, hardening techniques, secure development principles, and incident response basics. The course connects theoretical security concepts with applied technical solutions across operating systems, networks, and application layers. By the end of the course, students will be able to design and implement practical security measures for small to medium-sized systems.
Theoretic piece of knowledge and practical skills from requered areas
|
|
Prerequisites
|
Unspecified
|
|
Assessment methods and criteria
|
Written exam
Requirements for getting a credit are activity at the seminars. Examination is of the written forms.
|
|
Recommended literature
|
-
Dotson, Ch. Practical Cloud Security: A Guide for Secure Design and Deployment. O'Reilly Media, 2023. ISBN 978-1098148133.
-
Howard, R. Cybersecurity First Principles. Wiley, 2023. ISBN 978-1394173082.
-
Shapiro, J., S. Fancy Bear Goes Phishing: The Dark History of the Information Age, in Five Extraordinary Hacks. Farrar, Straus and Giroux, 2023. ISBN 978-0374601171.
|