Security and business continuity standards 2100-CB-M-D2NOBE
1. Security and business continuity standards vs. information security.
2. Stages of standards implementation and operation: introduction, scope of the standard, normative references, terms and
definitions, organizational context, leadership, planning, support, operation, performance evaluation and improvement.
3. The importance of safety standards for regulating business practices, production and quality, and for everyday life, safety and environmental
protection.
4. Standard as a publicly available document standardizing product, service, technology and research activities.
5. Principles, guidelines and courses of action in various aspects of human activity resulting from the application of standards.
6. The process of developing and adopting standards.
7. Determinants and factors influencing the creation of standards - the scientific basis, data tested for technical, economic and utility
validity, the current state of knowledge and the level of technology achieved (or achievable in the near ).
8. Types, content and applicability of ISO standards by companies and organizations.
9. The most commonly used ISO standards - standards in the series:
- 9000 - standards for quality management,
- 14000 - standards for environmental management,
- 18000 - standards for occupational health and safety,
- 22300 - business continuity standards (e.g., ISO 22301),
- 27000 - standards for information security management (e.g., ISO 27001),
- 28000 - standards for security management in the supply chain,
- 31000 - risk management standards.
10. Implications of implementing ISO standards in companies and organizations.
11. Benefits of using and complying with ISO standards. ISO standards as a guarantee of quality and safety.
12. Certification and business continuity process.
13. Methods and techniques for conducting audits and reporting non-compliance.
14. Auditor's work ethic.
Course coordinators
Mode
Learning outcomes
Knowledge, the student knows and understands:
- Security and business continuity norms for minimizing the risk of situations that pose a threat in cyberspace to which
organizations, states and their citizens are exposed (K_W05),
- principles, guidelines and ways of proceeding in various aspects of human activity resulting from the application of standards (K_W06),
- The benefits of using and complying with ISO standards (K_W06).
Skills, the student can:
- Use the acquired knowledge of safety standards to manage risks and implement preventive strategies to
To ensure the security of state enterprises and institutions (K_U02),
- Apply the learned standards to improve the cyber security of IT systems and infrastructures (K_U03).
Social competence, the student is ready to:
- use the acquired knowledge of security norms to form responsible attitudes in society regarding the use of cyberspace (K_K03).
Assessment criteria
Test, case study, class activity
Bibliography
1. Borys T., Rogala P. (2012), Quality and environmental management systems, Publishing House of the Wroclaw University of Economics,
Wroclaw.
2. Ejdys J. (2011), Model of improvement of standardized management systems based on knowledge, Oficyna Wydawnicza Politechniki
Białostockiej, Białystok.
3. Ejdys J., Kobylińska U., Lulewicz-Sas A. (2012), Integrated management systems for quality, environment and occupational safety, Oficyna
Wydawnicza Politechniki Białostockiej.
4. Górnicz M. (2017), International standardization of terminology: "terminological" committee of the International Organization for Standardization
ISO (TC 37) and its Polish counterpart, Scientific Publishing House of the Institute of Specialized and Intercultural Communication, University of
Warsaw, Warsaw, Poland.
5. Iwasiewicz A. (1999), Quality management, PWN Scientific Publishers, Warsaw.
6. Jazdon A. (2001), Improving quality management, Publishing house of the Center for Organizational Progress, Bydgoszcz.
7. Karaszewski R. (2001), TQM - theory and practice, Organizer's House, Torun.
8. Matuszak-Flejszman A. (2010), Determinants of improving the environmental management system in accordance with requirements of ISO
14001, Publishing House of the Poznań University of Economics, Poznań.
9. Plis Z. (1985), Standards in the national economy, PWN, Warsaw.
10. Senczyk D. (2014), Integrated management systems in the enterprise on selected examples, Scientific and Methodical Review
Education for Security No. 7.
11. Website: the official website of the Polish Committee for Standardization.
12. Sikora T. (2011), Functioning and improvement of quality management systems, UE Publishing House in Krakow, Krakow.
|
Term 2024L:
Knowledge, the student knows and understands: |
Additional information
Additional information (registration calendar, class conductors, localization and schedules of classes), might be available in the USOSweb system: