|
|
A proposal of controls for identity and access management system
Hurych, Tomáš ; Matuštík, Ondřej (advisor) ; Lipták, Ronald (referee)
Nowadays, the focus of IT security is increasingly concerned with the safety of the identities of employees and users of information systems. This phenomenon is even more compounded by the rapidly growing number of cloud services. This thesis briefly explains the basic concepts of access control and identity management. The thesis also contains identification of requirements and implications of risks on identity and access management system. The main objective is the general design of controls for identity and access management system, which has been designed to match legislative requirements, regulations, standards or frameworks commonly used in enterprise IT practice. For describing of the controls, mainly Cobit framework and IT Assurance Guide were used. The thesis also contains a suggestion how to adjust proposed controls in a cloud environment.
|
|
|
Metody hodnocení kvality informačního systému
Korn, Alexandra ; Svatá, Vlasta (advisor) ; Blahanravau, Yauheni (referee)
This thesis explores challenging topic of information system quality assessment and mainly process assessment. In this work the term Information System Quality is defined as well as different approaches in a quality definition for different domains of information systems are outlined. Main methods of process assessment are overviewed and their relationships are described. Process assessment methods are divided into two categories: ISO standards and best practices. The main objective of this work is application of gained theoretical knowledge in process assessment with CobiT 4.1 and CobiT 5.0 frameworks, and comparing results. The objective was achieved through consultation with processes owner and the completed questionnaires filled in by management of OnLine S.r.l. Additionally targeted level of capability in CobiT 5.0 is compared with actual, achieved level.
|
|
|
Concept of flexicurity
GEBAUEROVÁ, Barbora
This bachelor thesis deals with the issues of the labour market in the Czech Republic. The concept of "flexicurity" is stressed here as a possible tool for increasing the flexibility of the labour market. The thesis explains the particular rigidity factors that cause the inflexibility between the labour market offer and demand. Two business subjects are compared here. The result based on the questionnaire research is that both subjects look after their employees in sufficient way. Both subjects keep the factors of care and flexibility. The Index of employment rigidity on the current labour market in the Czech Republic was created. The use of the "flexicurity" concept was finally unsuccessful, mainly due to the factors of rigidity on the Czech labour market.
|
|
|
IS Audit - Theory and Practice
Fišera, Martin ; Svatá, Vlasta (advisor) ; Kalina, Jaroslav (referee)
The thesis covers the issue of IS audit in all its breadth. On the basis that this is a very complex area, it was necessary to divide the work into several logical and subsequent chapters. Quality and audit are the key words for this job. Therefore is them given the whole first chapter that chronologically describes the evolution of these concepts. Interpretation of quality is widely described since the Greece and Rome ancient, through Total Quality Management approach to the current understanding of the normative frameworks issued by ISO. There is the term audit continuously followed in the chapter of the concept of quality, whose development is also described in detail in chronological order starting from the reading public accounts to the current form of IS audit. Especially, we focus on development of the definition of audit and the relationship between the financial audits and IS. The second - last - part of the chapter is devoted to a detailed description of the reasons for the application of IS audit in practice. Because of the large specifications of the IS audit is this characteristic position in practice given the second chapter. This chapter contains not only description of the characteristics but also a brief outline of the issue of outsourcing and CloudComputing in relation to the audit of IS. The third chapter is devoted to a normative base of IS audit. Due to a large number of normative frameworks there are analysed only selected representatives in the chapter. These include the ISO / IEC 20000, COBIT, ITIL and others. They are thoroughly described, evaluated and compared to other possibly relevant for the definition of relations and benefit evaluation. The last chapter deals with design process of IS audit at a conceptual level. The aim is to freely continue on the normative base discussed in the previous chapter and a simple, versatile, easily applicable and adaptable IS audit process regarding defined limits.
|
|
|
The impact of exchange rate differences and assuring of business risks in a specific company
HAVLÍNOVÁ, Gabriela
The goal of the submitted thesis ``The impact of exchange rate differences and assuring of business risks in a specific company{\crqq} is dealing with exchange rates risks which appear due to international trading and possibilities of elimination of this risk. The first part is devoted to exchange rate risk, financial derivates and their basic characteristics. The second part deals with the exchange rate impacts and the examples of possible assurance against exchange losses in a specific company
|
|
|
Management system of active debts
HESSOVÁ, Zuzana
The subject of the diploma thesis is a management claim system. The aim of this work is surveying methods works with claims and giving well-arranged and integrated/coherent view of possibilities their assurance from points of law, accounting and tax, solutions of problem minimization bad debts/uncollectible accounts, of issue of the claim´s delimitations duties and responsibility. The theoretical part of the diploma thesis has been occupied of common delimitation of claims, it means their characteristics, the rise and the valuation, classification, accounting record and inventory; the claims after time-limit, the possibilities claims assurance, the items of correction, the claim´s depreciation and their cede. The practical part of my diploma thesis is made in the Oknoplastic company Příbram. The introduction of the practical part is intented on a characterization of this company, next sections are devoted to the analysis particual claims group, which are filling by company, to their assurance, items of correction and depreciations. The practical part is finished by proposal to improve system of claims management in the Oknoplastic company s.r.o.
|
|
|
Audit of application systems
Smola, Martin ; Svatá, Vlasta (advisor) ; Telíšková, Vladana (referee)
This thesis is concerned with audit of application system in copany MCR Technology s.r.o., identification of problem areas and following suggestion of possibilities in solving problems, which were identified pursuant to realized audit. First part is focused on general definition and characteristic of audit with view to his goals, mission and effective realization. Then is thesis concerned with audit of information systems, where are defined instruments and methodics for IS audit realization. Second part is focused on audit of application system in company. Audit involves selection of relevant application control form COBIT methodics and their modification for conditions of small copany. After it follows realisation of audit base on select control, summary of audit finding in audit report and indentification of problem areas. The subject of the third part is draft of solutions of problem areas in application system which were identified pursuant to audit.
|
guest ::
