B_KSBA Control system and security audit

University of Finance and Administration
Summer 2025
Extent and Intensity
2/1/0. 6 credit(s). Type of Completion: zk (examination).
Guaranteed by
JUDr. František Dědičík, MBA
Department of Law – Departments – University of Finance and Administration
Contact Person: Tereza Švestáková
Course Enrolment Limitations
The course is offered to students of any study field.
Syllabus
  • 1. Introductory lecture – introduction to the subject 2. Internal control system (general principles in both state organizations and private organizations) 3. Internal audit 4. External control system (control carried out by entities outside the organization – contractual and legal requirements) 5. Penetration tests (verify the functionality of security measures – cyber and physical) 6. Control systems implement control security functions 7. Information security (the goal is to protect information, property, reputation and the object of the organization's activities, etc. - protection of confidentiality, integrity, availability...) 8. Information system security (comprehensive summary of activities and measures designed to protect this system) 9. Protection of vulnerable points (Every information system has some weakness, some vulnerable point that can be used for attack). 10. IS control tests 11. Physical and technical protection of objects and IS (ability of the object to withstand all internal or external threats) 12. Safe behavior in cyberspace (ensuring the organization's cyber security) 13. Security policy (summary of security principles and regulations) 14. Information security monitoring (ensuring and increasing information security by targeted monitoring of IT operations) 15. Security audit (comprehensive security audit of the company in terms of technical, process and human aspects)
Literature
    required literature
  • • Zákon č. 181/2014 Sb., o kybernetické bezpečnosti, ve znění pozdějších předpisů
  • • Zákon č. 320/2001 Sb., o finanční kontrole ve veřejné správě a o změně některých zákonů (zákon o finanční kontrole), ve znění pozdějších předpisů
  • •Zákon č. 255/2012 Sb., o kontrole (kontrolní řád)
  • • SCHIFER V.; Vnitřní kontrolní systémy; ASPI Publishing; 2009; ISBN: 978-80-7357-9
    recommended literature
  • • VEBER J. a kol.; MANAGEMANT základy, prosperita, globalizace; Praha; Managemant Press; 2005; ISBN: 80-7261-029-5;
  • • DVOŘÁČEK, J.: Interní audit a kontrola, Praha, C. H. Beck, ISBN 80-7179-410-4
  • • DVOŘÁČEK, J., KAFKA, T.: Interní audit v praxi, Computer Press a. s., Brno, ISBN 80-251-0836-8
  • • Tvrdíková, M.: Aplikace moderních informačních technologií v řízení firmy. Grada, 2009. ISBN: 80-247-2728-5
  • • Molnár, Z.: Efektivnost informačních systémů. Grada, 2001. ISBN: 80-247-0087-5.
  • • https://www.nukib.cz/download/publikace/podpurne_materialy/2022-03-07_Penetracni-testovani_v1.0.pdf
  • • KOLOUCH, Jan, Pavel BAŠTA, Andrea KROPÁČOVÁ a Martin KUNC. CyberSecurity. Praha: CZ.NIC, z. s. p. o., 2019. 562 s. 1. vydání. ISBN 978-80-88168-31-7.
  • • KRÁLÍČEK V., MOLÍN J.; Vnější a vnitřní kontrola z pohledu managementu; Praha; Wolters Kluwer a. s.; 2014; ISBN: 978-80-247-5806-0; Str. 14-15; 42
Teaching methods
Theoretical training, lectures, seminar exercises, seminar work, practical exercises
Assessment methods
The course is concluded by credit and an oral exam. Credit will be given to active participation in seminars. Required attendance at seminars is at KS 50%, and at PS 75% of all exercises. The criterion for an oral exam is successfully answering   1 out of 15 test questions.
Language of instruction
Czech
Further comments (probably available only in Czech)
The course can also be completed outside the examination period.
Information on the extent and intensity of the course: 12 hodin KS/semestr.
The course is also listed under the following terms Summer 2021, Summer 2022, Summer 2023, Summer 2024.
  • Enrolment Statistics (recent)
  • Permalink: https://is.vsfs.cz/course/vsfs/summer2025/B_KSBA