Cyber security incidents and forensics

1.

Subject title

Cyber security incidents and forensics

Сајбер безбедносни инциденти и форензика

2.

Code

m23_w_058

3.

Study program

Cloud Computing, Data science in computer science and engineering, IT management, Security, Cryptography and Coding, Bioinformatics, Eco-informatics, Еducation with ICT, Inteligent Systems, Computer Science, Statistics and Data Analytics, Software for embedded systems, Software Engineering, Cloud Computing, IT management, Bioinformatics, Security, Cryptography and Coding, Statistics and Data Analytics, Software Engineering, Internet Technologies and cyber security,

4.

Organizer of the study program (unit, institute, department, division)

Faculty of Information Sciences and Computer Engineering

5.

Study cycle (first, second, third)

Втор циклус

6.

Academic year / semester

5 / Зимски

7. Number of ECTS credits

6.0

8.

Instructor

проф. д-р Анастас Мишев проф. д-р Соња Филипоска

9.

Prerequisites for enrollment

10.

Subject goals and competencies:

The objectives of the course are to enable the student to acquire knowledge related to handling incidents related to system security. The student will be able to distinguish events from incidents and classify incidents. Will know how to develop an incident response policy. It will be able to perform forensic analysis network and host based artifacts to determine the root cause. Know how of tools and support packages used in the field.

11.

Subject content:

Design, build, operate and develop a Computer Emergency Response Team (CERT). Management of Security operations center. Incident responses, incident response plans. Security event management. Vulnerability assessment, incident analysis. Policy needs. Laws and Policies in Use. Containment. Forensics and investigations. Working with evidence. Working with a forensic team. Legal provisions for forensics. Management and communication of information. Relationships between teams.

12.

Learning methods:

Предавања поддржани со презентации преку слајдови, интерактивни предавања, практични вежби, тимска работа, пример случаи, поканети предавачи, самостојна изработка на проектна задача и семинарска работа и електронско учење.

13.

Total available time fund

6.0 ECTS x 30 hours = 180 hours

14.

Time distribution

45 + 15 + 30 + 50 + 40 = 180 hours

15.

Forms of teaching activities

15.1.

Lectures - theoretical teaching

45 hours

15.2.

Exercises (laboratory, classroom), seminars, team work

15 hours

16.

Other forms of activities

16.1.

Project tasks

50 hours

16.2.

Independent tasks

30 hours

16.3.

Homework

40 hours

17.

Grading method

17.1.

Tests

45 points

17.2.

Seminar work / project (presentation: written and oral)

50 points

17.3.

Activities and learning

10 points

17.4.

Final exam

0 points

18.

Grading criteria (points / grade)

up to 50 points

5 (five) (F)

from 51 to 60 points

6 (six) (E)

from 61 to 70 points

7 (seven) (D)

from 71 to 80 points

8 (eight) (C)

from 81 to 90 points

9 (nine) (B)

from 91 to 100 points

10 (ten) (A)

19.

Condition for signature and taking final exam

реализирани активности

20.

Language of instruction

македонски и англиски

21.

Quality assurance method

Механизам на интерна евалуација и анкети

22.

Literature

22.1.

Mandatory literature

22.2.

Additional literature