National Repository of Grey Literature 70 records found  1 - 10nextend  jump to record: Search took 0.00 seconds. 
Implementation of the security minimum for the company
Havlas, Matej ; Martin,, Konečný (referee) ; Sedlák, Petr (advisor)
The content of my diploma thesis is the implementation of a security minimum for a company based on available literature and knowledge acquired during the study at BUT Faculty of Management. The first part will focus on the theoretical background of the work. The second part will focus on the analysis of the current state and the third part will focus on proposing a solution, which will be based on the analysis of the current state, legislation, and the theoretical background of the work. The conclusion of the work will summarize the results of the implementation based on an external audit and future steps that the company can take to improve their security.
The Company network security design and recovery plan
Fialík, Tomáš ; Rozehnalová, Jana (referee) ; Maradová, Karla (advisor)
The diploma thesis deals with the design of the company's network security and data recovery. The theoretical part is devoted to the current legislative requirements of the EU, Czech Republic, and relevant standards. It also provides an overview of cyber threats, statistical data on cyber attacks from the National Cyber and Information Security Authority, and a general procedure for designing a security network architecture and data recovery plan. The work is done in collaboration with the head of the IT department at Ferrit Ltd. The practical part deals with the analysis and description of the current state of the IT security network in Ferrit s.r.o., the design of a data recovery plan in case of ransomware attacks that would encrypt all data in the company, and the development of training for employees in the field of information and cyber security and a test to verify their knowledge. The paper concludes with an assessment of the benefits of designing a new network security architecture, data recovery plan, and user training.
Mapping Cyber Security Measures: From Legislation to Technical Implementation
Hopp, Jiří ; MSc, Mezera Michal, (referee) ; Sedlák, Petr (advisor)
In my thesis, I focused on creating a systematic tool for mapping technical measures and mitigations to national legislative cybersecurity requirements. I conducted an analysis of the addressed issue, which revealed opportunities for developing the tool and revealed forthcoming changes in legislative requirements based on the EU directive NIS2. In the following part of the thesis, I described the design and development of the mentioned tool in the form of a table. The tool met the client's requirements and mapped relevant technical measures to individual points of the current and NIS2-derived legislative requirements. Based on consultations with the client, I determined that the objectives outlined in the thesis were successfully met and that the developed tool will be utilized in a real-world environment.
Increase of security awareness at primary school
Zezula, Dominik ; Sobotková, Hana (referee) ; Sedlák, Petr (advisor)
This diploma thesis deals with the introduction of a primary school security awareness program. This goal is solved in three main parts. The introductory part of the thesis introduces basic concepts and theoretical basis of ISMS issues and the SAE program. The next part is analyzing the current state of the school system and introduced requirements for the introduction of the program. The third and main part of the thesis is devoted to the proposal of its own solution for building and introducing the SAE program. The outcome of this work is a security policy, SAE program and training materials.
Assessment of the level of cyber risks using the proposed tool
Černoušek, Robin ; Veselý Jindřich, Ing. MBA (referee) ; Sedlák, Petr (advisor)
The thesis deals with the issue of information security management system and determination of the current level of cybersecurity maturity and determination of risk areas. The theoretical part contains the basic background and concepts of the whole thesis. The chapter of the current state analysis introduces the organization and describes the current state of its information security management system and risk management. The actual design of the solution is a tool created in MS Excel that allows the organization to determine the current level of risk.
ISMS Implementation Status Assessment
Černoušek, Robin ; Veselý Jindřich, Ing., MBA (referee) ; Sedlák, Petr (advisor)
Bachelor's thesis deals with the issue of information security management system and evaluation of the current state using a created tool. The theoretical part contains the basic principles and concepts of the whole work. The chapter on the analysis of the current state introduces the organization and describes the current state of its information security management system. The actual design of the solution is a tool in the form of an Excel spreadsheet, which will allow an analysis of the current state of the ISMS implementation level in the company.
Best Practices of Information Security for Small Health Facilities
Fábryová, Bianka ; Sedlák, Petr (referee) ; Ondrák, Viktor (advisor)
This thesis deals with proposal of the best practices of Information Security focusing on small medical facilities and data protection of the pacients. The introductory part of this thesis focuses on the theoretical background of information security, based on the series of standards ISO/IEC 27000. In the practical part, based on the application of theoretical knowledge, there is formulated a proposal of recommended steps health care facilities should take to compliance with the principles of information security.
Design of security measures implementation in accordance with ISMS for healthcare institution
Valášková, Martina ; MBA, Vlastimil Svoboda, (referee) ; Sedlák, Petr (advisor)
The Master Thesis deals with the design of security measures in accordance with the information security management system and as well as the standards applicable to the critical infrastructure element since it is a healthcare institution. It consists of theoretical background, analysis of the current state of the network and certain areas of the hospital. The practical part is devoted to the risk analysis and the design of concrete measures that result in an increase in the information security level. This part also includes an economic evaluation of the design implementation.
Implementation of standard ISO 27701 in the company using Gap analysis
Vicen, Šimon ; Konečný, Martin (referee) ; Sedlák, Petr (advisor)
This thesis analyses current state of the system for implementation of standard ISO 27701: 2019 extention. This standard extends already established standard ISO 27001. The thesis evaluates set of controls to the requirements of standard ISO 27701: 2019. Theoretical part contains information regarding the information security, describes a set of ISO 27000 standards as well as European and Czech legal acts related to information security. Following analysis of the company is performed with the application of security measures while implementing the extension standard ISO 27701. Contribution of this thesis is evaluation of the analysis which results from implementation of recommended standard to address the increased number of security threats and the protection of security information.
Implementation of ISMS security countermeasures proposal for a company
Vyhňák, Petr ; Ondrák, Viktor (referee) ; Sedlák, Petr (advisor)
The master thesis deals with the proposal of introduction security countermeasures in accordance with the information security management system for the company. The theoretical part is defined in the first part of the thesis. The next part introduces the company, describes the current state of security and analysis security countermeasures with the help of supporting material. The last part includes the proposal to introduce new security countermeasures. The thesis includes risk analysis, design of selected security countermeasures including the implementation procedure with a time schedule and economic evaluation.

National Repository of Grey Literature : 70 records found   1 - 10nextend  jump to record: