Cyber Security Implementation in Practice (5 op)
Toteutuksen tunnus: YTCP0210-3005
Toteutuksen perustiedot
- Ilmoittautumisaika
-
20.11.2023 - 04.01.2024
Ilmoittautuminen toteutukselle on päättynyt.
- Ajoitus
-
08.01.2024 - 30.04.2024
Toteutus on päättynyt.
- Opintopistemäärä
- 5 op
- Lähiosuus
- 5 op
- Toteutustapa
- Lähiopetus
- Yksikkö
- Teknologiayksikkö
- Opetuskielet
- englanti
- Paikat
- 20 - 35
- Koulutus
- Master's Degree Programme in Information Technology, Cyber Security
- Opettajat
- Pasi Hyytiäinen
- Ryhmät
-
YTC23S1Master of Engineering, Degree Programme in Cyber Security
- Opintojakso
- YTCP0210
Toteutuksella on 4 opetustapahtumaa joiden yhteenlaskettu kesto on 22 t 0 min.
| Aika | Aihe | Tila |
|---|---|---|
|
Pe 22.03.2024 klo 15:00 - 20:00 (5 t 0 min) |
Cyber Security Implementation in Practice YTCP0210-3005 |
P2_D426
Mediatekniikka
|
|
La 23.03.2024 klo 09:00 - 15:00 (6 t 0 min) |
Cyber Security Implementation in Practice YTCP0210-3005 |
P2_D426
Mediatekniikka
|
|
Pe 19.04.2024 klo 15:00 - 20:00 (5 t 0 min) |
Cyber Security Implementation in Practice YTCP0210-3005 |
P2_D426
Mediatekniikka
|
|
La 20.04.2024 klo 09:00 - 15:00 (6 t 0 min) |
Cyber Security Implementation in Practice YTCP0210-3005 |
P2_D426
Mediatekniikka
|
Arviointiasteikko
0-5
Tavoitteet
The course concentrates on hardening a technical environment before a cyber incident has happened. Students focus on these technical controls how they actively prevent a cyber incident with group work and personal assignments. If the prevention isn’t sufficient the incident handling is also investigated and reported by Indicators of Compromise.
Main topics are updated each year, but mainly they correlate and draw inspiration from e.g. CIS Critical Security Controls and other related public recommendations. The students learn to implement these technical controls and test/audit them on the next course "Auditing and Testing Technical Security".
Course Competences
EUR-ACE: Engineering Design, Master's Degree
EUR-ACE: Engineering Analysis, Master's Degree
EUR-ACE: Engineering Practice, Master's Degree
Sisältö
The key topics of the course are:
- Cyber Threats
- Malware Defences
- Asset Inventory and Management
- Hardening Operating System and Network Devices
- Situational Awareness
- User authentication & authorization
- Boundary Defence
- Maintenance, monitoring and analysis of security audit logs
- Defence Strategies & Tactics
- Red Teaming
- Cyber Security Incident Handling
- Conducting personal hands-on implementation and research of security controls
- Conducting group implementations of security controls to an enterprise
Oppimateriaalit
Verkko-oppimisympäristössä julkaistava sähköinen materiaali.
Opetusmenetelmät
- luennot
- itseopiskelu
- verkko-opinnot
- webinaarit
- pienryhmätyöskentely
- harjoitustyöt
- oppimistehtävät
- seminaarit
Harjoittelu- ja työelämäyhteistyö
- vierailijaluennot
- projektit
Tenttien ajankohdat ja uusintamahdollisuudet
Mahdollinen tentin ajankohta ja toteutustapa ilmoitetaan opintojakson ensimmäisellä kerralla.
Toteutuksen valinnaiset suoritustavat
Hyväksilukemisen menettelytavat kuvataan tutkintosäännössä ja opinto-oppaassa. Opintojakson opettaja antaa lisätietoa mahdollisista opintojakson erityiskäytänteistä.
Opiskelijan ajankäyttö ja kuormitus
Yksi opintopiste (1 op) tarkoittaa keskimäärin 27 tunnin työtä.
- luennot 52 h
- harjoitustyöt 15 h
- tehtävät 35 h
- itsenäinen työskentely 30 h
- yritysvierailut 3 h
Yhteensä 135 h
Arviointikriteerit, tyydyttävä (1)
Sufficient 1: The student demonstrates sufficient mastery of the practical implementations of cyber security and is able to analyze an enterprises existing state of implementations concerning cyber security. The student has satisfactory understanding of an enterprises technical cyber threats and risks that are formulated related to context. The student is able to design a satisfactory technical implementation to control cyber security based on given requirement definition. The student reflects on his (her) own learning sufficiently.
Satisfactory 2: The student demonstrates satisfactory mastery of the practical implementations of cyber security and is able to analyze an enterprises existing state of implementations concerning cyber security. The student understands an enterprises technical cyber threats and risks that are formulated related to context. The student is able to design a satisfactory technical implementation to control cyber security based on given requirement definition. The student reflects on his (her) own learning.
Arviointikriteerit, hyvä (3)
Good 3: The student demonstrates good mastery of the practical implementations of cyber security and is able to analyze an enterprises existing state of implementations concerning cyber security. The student understands well an enterprises the technical cyber threats and risks that are formulated related to context. The student is able to design a technical implementation to control cyber security based on given requirement definition. The student reflects on his (her) own learning well.
Very Good 4: The student demonstrates very good mastery of the practical implementations of cyber security and is able to analyze an enterprises existing state of implementations concerning cyber security. The student understands very well an enterprises technical cyber threats and risks that are formulated related to context. The student is able to design a good technical implementation to control cyber security based on given requirement definition. The student reflects on his (her) own learning very well.
Arviointikriteerit, kiitettävä (5)
Excellent 5: The student demonstrates excellent mastery of the practical implementations of cyber security and is able to analyze an enterprises existing state of implementations concerning cyber security. The student understands excellently enterprises technical cyber threats and risks that are formulated related to context. The student is able to design an excellent technical implementation to control cyber security based on given requirement definition. The student reflects on his (her) own learning commendably.