Educational guide | ||||||||||||||||||||||||||||||||||||||||
IDENTIFYING DATA | 2024_25 | |||||||||||||||||||||||||||||||||||||||
Subject | GOOD PRACTICE IN INFORMATION SECURITY | Code | 01738007 | |||||||||||||||||||||||||||||||||||||
Study programme |
|
|||||||||||||||||||||||||||||||||||||||
Descriptors | Credit. | Type | Year | Period | ||||||||||||||||||||||||||||||||||||
4 | Compulsory | First | First |
|||||||||||||||||||||||||||||||||||||
Language | ||||||||||||||||||||||||||||||||||||||||
Prerequisites | ||||||||||||||||||||||||||||||||||||||||
Department | DERECHO PUBLICO |
|||||||||||||||||||||||||||||||||||||||
Coordinador |
|
stars@unileon.es pcparp@unileon.es talvr@unileon.es ocaso@unileon.es vfidv@unileon.es mgomh@unileon.es tgutm@unileon.es lmarr@unileon.es pperg@unileon.es ered@unileon.es bsanr@unileon.es |
||||||||||||||||||||||||||||||||||||||
Lecturers |
|
|||||||||||||||||||||||||||||||||||||||
Web | http:// | |||||||||||||||||||||||||||||||||||||||
General description | ||||||||||||||||||||||||||||||||||||||||
Tribunales de Revisión |
|
|||||||||||||||||||||||||||||||||||||||
Competencies |
Type A | Code | Competences Specific |
A17813 | ||
Type B | Code | Competences Transversal |
B5486 | ||
B5487 | ||
B5488 | ||
B5489 | ||
B5491 | ||
Type C | Code | Competences Nuclear |
C2 |
Learning aims |
Competences | |||
A17813 |
B5486 B5487 B5488 B5489 B5491 |
C2 |
Contents |
Topic | Sub-topic |
1. Basic Concepts. | 1.1. Bases and standards of information security. 1.2. Information-security binomial as a legal obligation and information security as a good praxis. |
2. Audits and Information Security Management Systems. | 2.1. Practical visión of the information systems audit. The professional profiling of the information systems auditor. 2.2. Information Security Management Systems (SGSI): ISO 27001: 2013. 2.3. Audit and legal profiling: working methods in security audit applied to the legal obligations of the information systems audition. |
3. Other forms of good praxis in the information technical management. | 3.1. Safe programming and vulnerability identification. 3.2. Introduction to "blockchain". 3.3. Ethical hacking. |
Planning |
Methodologies :: Tests | |||||||||
Class hours | Hours outside the classroom | Total hours | |||||||
Problem solving, classroom exercises | 10 | 15 | 25 | ||||||
Practicals using information and communication technologies (ICTs) in computer rooms | 6 | 9 | 15 | ||||||
Tutorship of group | 2 | 3 | 5 | ||||||
Lecture | 20 | 30 | 50 | ||||||
Mixed tests | 2 | 3 | 5 | ||||||
(*)The information in the planning table is for guidance only and does not take into account the heterogeneity of the students. |
Methodologies |
Description | |
Problem solving, classroom exercises | |
Practicals using information and communication technologies (ICTs) in computer rooms | |
Tutorship of group | |
Lecture |
Personalized attention |
|
|
Assessment |
Description | Qualification | ||
Lecture | Se valoran de forma integrada en el resto de sistemas de evaluación. | ||
Problem solving, classroom exercises | 5% - 10% | ||
Practicals using information and communication technologies (ICTs) in computer rooms | 5% - 10% | ||
Mixed tests | 40% - 70% | ||
Other comments and second call | |||
Sources of information |
Access to Recommended Bibliography in the Catalog ULE |
Basic |
Díaz Vilches, Florencio, Delegado de protección de datos : Reglamento general de protección de datos (UE) 2016/679. Dominios 2 y 3., ANF Autoridad de Certificación, 2018 Díaz Vilches, Florencio, Delegado de protección de datos : Reglamento general de protección de datos (UE) 2016/679: Dominio I, ANF Autoridad de Certificación, 2018 INCIBE, Auditoría de Sistemas, Gobierno de España, www.incibe.es Piattini Velthuis; Peso Navarro y Peso Ruiz, Auditoria de tecnologías y sistemas de información, RA-MA, 2008 Peso Navarro, Emilio del, Auditoría jurídica de los entornos informáticos, Informática y derecho: Revista iberoamericana de derecho informático, pp. 611-655, 1998 Preukschat, Alex (Coord.), Blockchain: la revolución industrial de internet, Gestión 2000, 2017 INCIBE, Buenas prácticas en el Área de Informática, Gobierno de España, www.incibe.es Pujol Montero, Javier, Delegado de protección de datos (DPD): Dominio 1, Tirant Lo Blanch, 2019 (2ª ed. 2022) Pujol Montero, Javier, Delegado de protección de datos (DPD): Dominios 2 y 3, Tirant Lo Blanch, 2019 (2ª ed. 2022) Ruiz Larrocha, E., Nuevas tendencias en los sistemas de información, Ramón Areces, 2017 Ruiz Larrocha E., y Ruiz Virumbrales J.L., Sistemas de información de las organizaciones, Ramón Areces, 2012 |
Complementary | |
Recommendations |