Metodika asistovaného zhodnocení / Methodology of a security audit

Kroupová, Hana

January 2019

The master‘s thesis is focused on security audit. The aim of this thesis is to create methodology, which might help with creating security audits and research current condition of cybernetic and information security in a business establishment. Theoretical part explains basic terms and concepts about cyber and information security. Own interpretation consist description of methodological areas of security audit.

Implementace nástroje pro řízení kybernetické bezpečnosti / Implementation of a tool for cyber security management

Strachová, Zuzana

January 2021

The thesis is focused on the implementation of a software tool to increase the effectiveness of cyber security management. The tool is implemented in a company preparing to be classified as a part of critical information infrastructure. Based on the customer's requirements, a suitable cyber security management tool is selected. Subsequently, I propose a methodology for implementing the tool, which I immediately apply. The output of the work is an implemented tool, risk analysis and security documentation required by law.

Проектирование системы для автоматизации процесса проведения аудита для объектов критической информационной инфраструктуры : магистерская диссертация / Designing a system to automate the audit process for critical information infrastructure facilities

Василенко, А. О., Vasilenko, A. O.

January 2023

Целью данной магистерской диссертации является проектирование системы для автоматизации проведения аудита технических мер безопасности по результатам работы ПО DATAPK. Научная новизна заключается в проектировании новой системы, подходящей под цели государственного заказчика. Практическая значимость данного исследования состоит в применении результатов магистерской диссертации для разработки системы, с помощью которой будут проверяться все существующие объекты защиты на выполнение техническим мерам, обнаружение уязвимостей и беспроводных точек в сети, процесс оценки станет всеобъемлющим и эффективным. Работа включает в себя разработку критериев оценки соблюдения технических мер, разработку требований к системе и основных принципов ее работы. Результатом работы является техническое задание на разработку автоматизированной системы для проведения аудита, сопроводительная документация и шаблон технического отчета. / The purpose of this master's thesis is to design a system for automating the audit of technical security measures based on the results of the DATAPK software. Scientific novelty lies in the design of a new system suitable for the goals of the state customer. The practical significance of this study is to apply the results of the master's thesis to develop a system that will check all existing objects of protection for the implementation of technical measures, the detection of vulnerabilities and wireless points in the network, the assessment process will become comprehensive and effective. The work includes the development of criteria for assessing compliance with technical measures, the development of requirements for the system and the basic principles of its operation. The result of the work is the terms of reference for the development of an automated system for conducting an audit, accompanying documentation and a technical report template.

MASTER'S THESIS

INFORMATION SECURITY AUDIT

AUTOMATION OF MEASURES CHECKING

SYSTEM DESIGN PROJECT

DESIGN

An examination of the impact of residential security measures on the incidence of residential burglary in two selected northern suburbs of Johannesburg: a security risk management approach

Olckers, Casparus

30 June 2007

Motivation This project was of specific importance to the private security industry, victims of residential burglary, community policing forums and the South African Police Service in providing detailed information regarding recommendations of how to manage and combat residential burglary in two selected northern suburbs of Johannesburg. Problem statement Residential burglary is categorised in the top three highest reported crimes according to the official South African Police Service statistics for the 2006/7 financial years. A series of victim interviews, docket analysis, case plotting and residential security audit surveys were conducted to determine the extent (or lack thereof) of security measures at a burgled residence in the selected area. Approach Field data was collected through docket analysis, plotting crime scenes (descriptive mapping), victim interviews and residential security audit surveys. Results The majority of victims of burglary interviewed did not have the minimum security system (integrated measures) in place. Those victims, who had security measures, appeared not to have made or implemented effective use of them. Conclusion Security at a residence extends beyond just the immediate house area and the focus (security risk assessment) should start with the immediate neighbourhood (community) area working inwards towards the property perimeter (boundary), inner perimeter (garden area) and then finally the immediate house area. / CRIMINOLOGY / MTECH: SECURITY RISK MAN

Residential security measures

community security initiatives

perimeter security

inner perimeter security

immediate house area security

residential security measures

residential security measure attributes

deter

detect

delay

docket analysis

victim interviews

residential security audit survey

descriptive mapping

docket analysis

363.10720968221

Loss control--South Africa--Johannesburg

An examination of the impact of residential security measures on the incidence of residential burglary in two selected northern suburbs of Johannesburg: a security risk management approach

Olckers, Casparus

30 June 2007

Motivation This project was of specific importance to the private security industry, victims of residential burglary, community policing forums and the South African Police Service in providing detailed information regarding recommendations of how to manage and combat residential burglary in two selected northern suburbs of Johannesburg. Problem statement Residential burglary is categorised in the top three highest reported crimes according to the official South African Police Service statistics for the 2006/7 financial years. A series of victim interviews, docket analysis, case plotting and residential security audit surveys were conducted to determine the extent (or lack thereof) of security measures at a burgled residence in the selected area. Approach Field data was collected through docket analysis, plotting crime scenes (descriptive mapping), victim interviews and residential security audit surveys. Results The majority of victims of burglary interviewed did not have the minimum security system (integrated measures) in place. Those victims, who had security measures, appeared not to have made or implemented effective use of them. Conclusion Security at a residence extends beyond just the immediate house area and the focus (security risk assessment) should start with the immediate neighbourhood (community) area working inwards towards the property perimeter (boundary), inner perimeter (garden area) and then finally the immediate house area. / CRIMINOLOGY / MTECH: SECURITY RISK MAN

Residential security measures

community security initiatives

perimeter security

inner perimeter security

immediate house area security

residential security measures

residential security measure attributes

deter

detect

delay

docket analysis

victim interviews

residential security audit survey

descriptive mapping

docket analysis

363.10720968221

Loss control--South Africa--Johannesburg