INFORMATION SECURITY MANAGEMENT SYSTEM AND DIGITAL FORENSIC ANALYSIS

Information security became the leading topic in IS/ICT in the last period. There are two ways how to reach the higher level of corporate IS/ICT security the first one is applying international standards, the second one is based on correct evaluation of security incidents. Basic tool for security incidents evaluation and/or for its prevention is digital forensic analysis. This contribution offers general concept of the master level course "Digital Forensic Analysis" as it is taught on Faculty of Informatics and Statistics, University of Economics, Prague. It presents a short description of course's topics and overview of competences that should dispose graduates of it. The purpose of digital forensic class at University of Economics, Prague is to provide the state of art of methodologies in data acquisition and OS level artifacts analysis which would allow students to interpret process and user action on examined evidence. With limited time given to the lectures, students will be exposed with complex techniques for data acquisition and basic analysis of the NTFS file system architecture, data recovery, data carving, binary file identification, Windows registry parsing, Windows log parsing, data de-duplication and document indexing. Each lecture will consist of theoretical background and case study. Case studies scenarios representing simplified real scenarios from authors past experience in digital forensic institute.