|
|
The Impacts of a Ransomware Attack: Risk Management and Implementation of the Minimal Security Standard
Syrovátková, Lucie ; Alena,, Rybáková (referee) ; Sedlák, Petr (advisor)
The aim of the thesis is to implement cyber security in a small company as a result of a suffered ransomware attack based on the requirements of the Minimal Security Standard, which is a support material for entities that are not regulated by the Cyber Security Act in the Czech Republic. The main goal is achieved through the three main parts into which the thesis is divided. The introductory part is a theoretical support for the remainder of the thesis and contains the main concepts and areas that are used in the thesis. The analytical part focuses on the description of a possible vector of a ransomware attack and its consequences. In the second part of the analytical chapter, the current situation of the company is assessed in comparison to the requirements of the Minimal Security Standard. The last part proposes specific security measures, creation of security policies adapted to the company's capabilities and an economic evaluation.
|
|
|
Mapping Cyber Security Measures: From Legislation to Technical Implementation
Hopp, Jiří ; MSc, Mezera Michal, (referee) ; Sedlák, Petr (advisor)
In my thesis, I focused on creating a systematic tool for mapping technical measures and mitigations to national legislative cybersecurity requirements. I conducted an analysis of the addressed issue, which revealed opportunities for developing the tool and revealed forthcoming changes in legislative requirements based on the EU directive NIS2. In the following part of the thesis, I described the design and development of the mentioned tool in the form of a table. The tool met the client's requirements and mapped relevant technical measures to individual points of the current and NIS2-derived legislative requirements. Based on consultations with the client, I determined that the objectives outlined in the thesis were successfully met and that the developed tool will be utilized in a real-world environment.
|
|
|
Building security awareness at the Faculty of Business and Management
Volfová, Jana ; Ondrák, Viktor (referee) ; Sedlák, Petr (advisor)
This diploma thesis is focused on Security Awareness Education at the Faculty of Business and Management. It consists of three main parts: theoretical, analytical and practical considerations. The theoretical part is the introduction to basic terms, processes and analysis to help understand the thesis. The analytical part includes an introduction to the chosen organization and the implementation of analysis, which were presented in the theoretical part. The practical part contains, among other things, the actual proposals for Security Awareness Education at the faculty and its benefits.
|
|
|
Information System Assessment and Proposal of ICT Modification
Závodný, Jiří ; Novák, Lukáš (referee) ; Koch, Miloš (advisor)
The bachelor thesis is focused on the analysis of the information system in XCR Svorada s.r.o. and a subsequent proposal for amendments. The first part is devoted to the theoretical background needed to understand the issue. Furthermore, the analysis of the company, its internal and external environment, the analysis of the information system used and in the last part of the proposal changes for improving, streamlining and simplifying the work with the information system.
|
|
| |
|
|
Acquisition of email communication security service according to ISMS
Foltýn, Adam ; Ondrák, Viktor (referee) ; Sedlák, Petr (advisor)
The diploma thesis focuses on a proposal of acquisition of email communication security service according to ISMS for a company which provides trading services on financial markets. The thesis is divided into three parts. In the theoretical part, necessary terms and theoretical essentials are explained in order to ensure understanding of the following parts of the thesis. The following analytical part describes the company's current security status of information. As a solution in the final part of the thesis, partial risk analyses are conducted. Based on these, suitable options for email communication security measures are proposed as well as their the economical evaluation.
|
|
|
Human behaviour monitoring system based on smartphone and bracelet data analysis
Mikulec, Marek ; Zvončák, Vojtěch (referee) ; Mekyska, Jiří (advisor)
There has been established new technological field using smart phones and wearable devices for medical research since the arrival of health 4.0. The main goal of this work is to design, implement and test new system for monitoring people´s behaviour using smart phone and wearable device. These smart compoments should oblige requirements of health~4.0. This work uses open source software AWARE Framework and data from Fitbit API. The final system enables gathering and sharing 36 measurable metrics from smart phone and wearable device. Furthermore it secures efective access to gathered data and puts particular emphasis on the security of the system. Finally the system was used to examine a patterns of REM (Rapid Eye Movement) sleep behaviour disorder.
|
|
|
Systematic Solution for Information Security in Organisation
Palička, Jan ; Dohnal, Matěj (referee) ; Sedlák, Petr (advisor)
This diploma thesis deals with ISMS implementation in Netcope Technologies, a. s., which is involved in the production of network cards for high speed acceleration. This thesis is divided into two logical parts. In the first part the theoretical basis information is presented, including selected methods for implementing information security. In the second part, the analysis of the company and the proposed measures are presented.
|
|
|
Security GAP analasys in enterprise environment
Sommer, Vojtěch ; Kornelly, Aleš (referee) ; Sedlák, Petr (advisor)
The diploma thesis deals with level of information security in selected company environment. For this purpose, a security GAP analysis will be performed based on the recommended standard ISO/IEC 27002. Based on the performed analysis a proposal of security precautions is suggested, which should reduce risk of threats under the acceptable level and also should no longer be in conflict with mentioned standard.
|
|
|
Information Strategy
Jedličková, Marie ; Zahradníček, Pavel (referee) ; Koch, Miloš (advisor)
The existence of an information strategy in a company helps to manage the information system and thereby positively affect the achievement of global strategic goals of the company and its overall market success. This thesis focuses on the creation of an information strategy in a company based on the Czech market, in the sector of small and medium-sized companies. The first part presents theoretical basis of the topic. The second part is devoted to a detailed analysis of the current condition of the company and its potential, which makes it possible in the third part, to identify appropriate amendments, which will be implemented within the enterprise information strategy. The proposed changes will be consistent with the overall strategy of the company and lead to better support of the future development of the company in the market.
|
guest ::
