B_KSBA Control system and security audit

University of Finance and Administration
Summer 2025
Extent and Intensity
2/1/0. 6 credit(s). Type of Completion: zk (examination).
Teacher(s)
JUDr. František Dědičík, MBA (seminar tutor)
Guaranteed by
JUDr. František Dědičík, MBA
Department of Security and Public Order – Departments – University of Finance and Administration
Contact Person: Bc. Tereza Švestáková
Timetable of Seminar Groups
B_KSBA/cBSMO: each odd Tuesday 12:15–12:59 M24, each odd Tuesday 13:00–13:45 M24, F. Dědičík
B_KSBA/cBSPH: Mon 17:30–18:14 S24, except Mon 3. 3. ; and Tue 18. 3. 14:45–15:30 S14, F. Dědičík
B_KSBA/pBSMO: each odd Tuesday 8:45–9:29 M24, each odd Tuesday 9:30–10:15 M24, each odd Tuesday 10:30–11:14 M24, each odd Tuesday 11:15–12:00 M24, F. Dědičík
B_KSBA/pBSPH: Mon 15:45–16:29 S24, Mon 16:30–17:15 S24, except Mon 3. 3. ; and Tue 18. 3. 13:00–14:30 S14, F. Dědičík
B_KSBA/vBSMO: Sat 8. 2. 8:00–9:30 M24, 9:45–11:15 M24, Sat 22. 2. 8:00–9:30 M24, 9:45–11:15 M24, Sat 22. 3. 8:00–9:30 M24, 9:45–11:15 M24, F. Dědičík
Course Enrolment Limitations
The course is offered to students of any study field.
Syllabus
1. Introductory lecture – introduction to the subject 2. Internal control system (general principles in both state organizations and private organizations) 3. Internal audit 4. External control system (control carried out by entities outside the organization – contractual and legal requirements) 5. Penetration tests (verify the functionality of security measures – cyber and physical) 6. Control systems implement control security functions 7. Information security (the goal is to protect information, property, reputation and the object of the organization's activities, etc. - protection of confidentiality, integrity, availability...) 8. Information system security (comprehensive summary of activities and measures designed to protect this system) 9. Protection of vulnerable points (Every information system has some weakness, some vulnerable point that can be used for attack). 10. IS control tests 11. Physical and technical protection of objects and IS (ability of the object to withstand all internal or external threats) 12. Safe behavior in cyberspace (ensuring the organization's cyber security) 13. Security policy (summary of security principles and regulations) 14. Information security monitoring (ensuring and increasing information security by targeted monitoring of IT operations) 15. Security audit (comprehensive security audit of the company in terms of technical, process and human aspects)
Literature
    required literature
  • Zákon č. 264/2025 Sb., o kybernetické bezpečnosti
  • Vyhláška č. 82/2018 Sb., o bezpečnostních opatřeních, kybernetických bezpečnostních incidentech, reaktivních opatřeních, náležitostech podání v oblasti kybernetické bezpečnosti a likvidaci dat
  • • Zákon č. 320/2001 Sb., o finanční kontrole ve veřejné správě a o změně některých zákonů (zákon o finanční kontrole), ve znění pozdějších předpisů
  • •Zákon č. 255/2012 Sb., o kontrole (kontrolní řád)
  • • SCHIFER V.; Vnitřní kontrolní systémy; ASPI Publishing; 2009; ISBN: 978-80-7357-9
    recommended literature
  • • VEBER J. a kol.; MANAGEMANT základy, prosperita, globalizace; Praha; Managemant Press; 2005; ISBN: 80-7261-029-5;
  • • DVOŘÁČEK, J.: Interní audit a kontrola, Praha, C. H. Beck, ISBN 80-7179-410-4
  • • DVOŘÁČEK, J., KAFKA, T.: Interní audit v praxi, Computer Press a. s., Brno, ISBN 80-251-0836-8
  • • Tvrdíková, M.: Aplikace moderních informačních technologií v řízení firmy. Grada, 2009. ISBN: 80-247-2728-5
  • • Molnár, Z.: Efektivnost informačních systémů. Grada, 2001. ISBN: 80-247-0087-5.
  • • https://www.nukib.cz/download/publikace/podpurne_materialy/2022-03-07_Penetracni-testovani_v1.0.pdf
  • • KOLOUCH, Jan, Pavel BAŠTA, Andrea KROPÁČOVÁ a Martin KUNC. CyberSecurity. Praha: CZ.NIC, z. s. p. o., 2019. 562 s. 1. vydání. ISBN 978-80-88168-31-7.
  • • KRÁLÍČEK V., MOLÍN J.; Vnější a vnitřní kontrola z pohledu managementu; Praha; Wolters Kluwer a. s.; 2014; ISBN: 978-80-247-5806-0; Str. 14-15; 42
Teaching methods
Theoretical training, lectures, seminar exercises, seminar work, practical exercises
Assessment methods
The course is concluded by credit and an oral exam. Credit will be given to active participation in seminars. Required attendance at seminars is at KS 50%, and at PS 75% of all exercises. The criterion for an oral exam is successfully answering   1 out of 15 test questions.
Language of instruction
Czech
Further Comments
The course can also be completed outside the examination period.
The course is also listed under the following terms Summer 2021, Summer 2022, Summer 2023, Summer 2024, Summer 2026.
  • Enrolment Statistics (Summer 2025, recent)
  • Permalink: https://is.vsfs.cz/course/vsfs/summer2025/B_KSBA