Ogni modulo equivale a 3 crediti ECTS. È possibile scegliere un totale di 10 moduli/30 ECTS nelle seguenti categorie:
- 12-15 crediti ECTS in moduli tecnico-scientifici (TSM)
I moduli TSM trasmettono competenze tecniche specifiche del profilo e si integrano ai moduli di approfondimento decentralizzati. - 9-12 crediti ECTS in basi teoriche ampliate (FTP)
I moduli FTP trattano principalmente basi teoriche come la matematica, la fisica, la teoria dell’informazione, la chimica ecc. I moduli ampliano la competenza scientifica dello studente e contribuiscono a creare un importante sinergia tra i concetti astratti e l’applicazione fondamentale per l’innovazione - 6-9 crediti ECTS in moduli di contesto (CM)
I moduli CM trasmettono competenze supplementari in settori quali gestione delle tecnologie, economia aziendale, comunicazione, gestione dei progetti, diritto dei brevetti, diritto contrattuale ecc.
La descrizione del modulo (scarica il pdf) riporta le informazioni linguistiche per ogni modulo, suddivise nelle seguenti categorie:
- Insegnamento
- Documentazione
- Esame
This module is designed to provide a practical introduction to Cyber Security Operations. Students will learn about different operational security functions like SOCs, CERTs, DFIR teams, CTI and Hunt teams, Red and Blue teams, and the tools they use to detect and respond to cyber criminal activity. The module provides in depth coverage of digital forensics.
Requisiti
Students should have a basic understanding of the fundamentals of cybersecurity, including network security, system security, and cryptography. Additionally, they should have a good understanding of operating systems, and network architecture. Basic knowledge of OSINT would also be beneficial.
Obiettivi di apprendimento
Upon completion of the module, students should be able to:
- Understand operational cyber security roles and responsibilities within an organization,
- Explain basic concepts of detection, incident response, threat intelligence, and security testing.
- Perform digital evidence preservation and forensic analysis, conduct investigations
- Write forensic/incident reports for different recipients (police, regulators, management, technical peers)
- Restore an organization to a safe and operational state
- Understand how ethical hacking can be used to improve the security of systems
Contenuti del modulo
DFIR: Digital Forensics and Incident Response (DFIR) is the main focus of the module. This includes securing and preserving digital evidence, forensic analysis, reconstructing past events, creating timelines, and performing investigations.
Detection: students will be introduced to logging and monitoring systems, intrusion and anomaly detection systems (HIDS and NIDS), and Security Information and Event Management (SIEM) systems, and other operational aspects of detection.
CTI: students will be introduced to Cyber Threat Intelligence (CTI), the intelligence process and lifecycle, intel sharing communities, intel / IOC exchange platforms (like MISP), and OSINT.
Security testing: The testing component covers a high level overview of penetration/Red-Team testing, security reviews, cyber excercises, and ethical hacking. The use of Bug-Bounty programs to improve security is also explained
Metodologie di insegnamento e apprendimento
Lectures with a mix of practical and theoretical exercises.
Bibliografia
The following material is provided:
- Teacher's slides and notes
- Selected publications (papers, books)
- Relevant videos
Scarica il descrittivo completo del modulo
Indietro