Courses – Fakultet tehničkih nauka u Novom Sadu

Subject: Cyber Incident Analysis and Response (19.IB23)

Native organizations units: No data

Type of studies	Title
Master Academic Studies	Information Security (Godina: 1, Winter)

General information:

Category	Scientific-professional
Scientific or art field	Primenjeno softversko inženjerstvo
Interdisciplinary	No
ECTS	6

Educational goal:

The goal of this course is to teach students the necessary skills required for designing and building incident response teams. This goal will be achieved via a detailed presentation and discussion of the threats, vulnerabilities, attack types and attack modelling techniques utilized in cyberspace. The relevant regulatory framework will be overviewed.

Educational outcome:

The students are able to enumerate the different cyber threat and vulnerability types. They are able to create detailed cyber attack analysis and modeling. The students are able to analyze malware samples. They are familiar with the types of incident response teams. The students are familiar with the methodology for developing and managing Security Operations Centers. They are aware of the relevant regulations and ethics surrounding the incident analysis and response domain.

Course content:

Cybersecurity and privacy principles. Cyber threats and vulnerabilities. Different classes of attacks, cyber attackers behavior models. Modeling the cyber attack stages. Basics of malware analysis – concepts and methodologies. Incident categories, incident responses, and timelines for responses. Organization and management of Security Operations Centers (SOC). Types of incident response teams, e.g. military, national, company-level. Laws, regulations, standards, policies and ethics in cybersecurity and privacy.

Teaching methods:

Lectures; Other forms of teaching; Consultations.

Literature:

Authors	Title	Year	Publisher	Language
Бранислав Атлагић	Софтвер са критичним одзивом : пројектовање SCADA система	2015	Нови Сад : Факултет техничких наука	Serbian language
Гордана Милосављевић	Развој пословних информационих система вођен моделима	2015	Нови Сад : Факултет техничких наука	Serbian language
Војин Грковић и Александар Јовановић	Термоенергетска постројења - пројектовање технологије рада и управљање ризицима	2015	Нови Сад : Факултет техничких наука	Serbian language
N.K. McCarthy, Matthew Todd, Jeff Klaben	The Computer Incident Response Planning Handbook: Executable Plans for Protecting Information at Risk	2012	McGraw-Hill Education	English
Eric C. Thompson	Cybersecurity Incident Response: How to Contain, Eradicate, and Recover from Incidents	2018	Apress	English
Срђан Попов, Ђорђе Ћосић, Тања Новаковић, Љилљана Поповић	Моделовање и симулација у управљању ризиком	2016	Нови Сад : Факултет техничких наука	Serbian language
Велимир Чонградац, Илија Каменко, Филип Кулић, Никола Јорговановић	Управљање процесима рачунаром кроз решене примере	2013	Нови Сад : Факултет техничких наука	Serbian language
Scott N. Schober	Hacked Again	2016	ScottSchober.com Publishing	English
André Årnes	Digital Forensics (1st Edition)	2017	Wiley	English
Monnappa K A	Learning Malware Analysis: Explore the concepts, tools, and techniques to analyze and investigate Windows malware	2018	Packt Publishing	English