Students can name dangers and risks of IT systems. They can list methods of improving network, communication and application security. They can describe the job profile and responsibilities of an IT security manager.

None

Security of IT systems is essential for all kinds of businesses. Dangers and risks must be assessed and appropriate measures to protect the systems must be taken. The following threats, types of attack and defense mechanisms are discussed in scenarios:

• Attacker, motives and approach
• IT security manager
• Social engineering
• Cloud and web server security
• Firewalls and intrusion detection/prevention
• Search engine hacking (Google, Shodan,...)
• Digital identity and online profiling
• Cryptology and securing network connections
• SPAM, phishing, pharming
• Viruses, worms, trojans, RATs

• Eckert C. (2018): IT-Sicherheit: Konzepte - Verfahren - Protokolle. 10th ed. De Gruyter
  
• Kofler M. (2018): Hacking & Security: Das umfassende Handbuch. Rheinwerk Computing
  
• Kersten H., Klett G. (2015): Der IT Security Manager: Aktuelles Praxiswissen für IT Security Manager und IT-Sicherheitsbeauftragte in Unternehmen und Behörden. 4th ed. Springer Vieweg.
  
• Poguntke W. (2017): Basiswissen IT-Sicherheit. Das Wichtigste für den Schutz von Systemen und Daten. 3rd ed. Springer Campus.
  
• Kraft, P., Weyert, A. (2014): Network Hacking. Franzis Verlag, 4th rev. ed.

Lecture, tutorial, case study analysis in groups

Written exam