2. Professors
  3. ESPOSITO CHRISTIANCARMINE
  4. Teaching

IT-SECURITY STANDARDS AND REGULATION

CHRISTIANCARMINE ESPOSITO IT-SECURITY STANDARDS AND REGULATION

8860100057
COMPUTER SCIENCE
Corso di Dottorato (D.M.226/2021)
COMPUTER SCIENCE
2024/2025



YEAR OF COURSE 1
YEAR OF DIDACTIC SYSTEM 2024
AUTUMN SEMESTER
CFUHOURSACTIVITY
318LESSONS
CHRISTIANCARMINE ESPOSITO T Curriculum
MOHAMMAD RAHAMATULLAH KHONDOKER Curriculum
Objectives
LIKE ANY OTHER STUDY DOMAIN, HAVING DIFFERENT TERMS AND METHODS FOR IT-SECURITY ACROSS DIFFERENT COUNTRIES AND ORGANIZATIONS IS A COMMON CHALLENGE. IN ADDITION, SINCE IT-SECURITY PRODUCES COSTS WITHOUT DIRECT POSITIVE IMPACTS ON REVENUES, MANY ORGANIZATIONS ARE RELUCTANT TO IMPLEMENT IT-SECURITY MEASURES. TO TACKLE THESE AND OTHER CHALLENGES, STANDARDS, FRAMEWORKS, GUIDELINES AND REGULATIONS HAVE BEEN DEVELOPED AND IMPLEMENTED FOR IT-SECURITY INCLUDING ISO2700X, BSI-STANDARD, NIST CSF, AND EU GDPR. IN THIS COURSE, WELL-KNOWN STANDARDS, FRAMEWORKS, AND REGULATIONS ON IT-SECURITY ARE PRESENTED.
THE COURSE AIMS TO PRESENT AN OVERVIEW OF IT-SECURITY STANDARDS, FRAMEWORKS, GUIDELINES AND REGULATIONS. IN ADDITION, THE COURSE AIMS TO OFFER A SET OF RESEARCH TOPICS ON IT-SECURITY STANDARDS WHERE THE PARTICIPANTS WILL WORK INDEPENDENTLY OR IN A SMALL GROUP OF MAXIMUM 2 PERSONS.

KNOWLEDGE AND UNDERSTANDING
•KNOWLEDGE OF THE WELL-KNOWN IT-SECURITY STANDARDS, FRAMEWORKS, GUIDELINES AND STANDARDS
•KNOWLEDGE OF WRITING AND PUBLISHING A RESEARCH PAPER, ESPECIALLY ON IT-SECURITY STANDARDS
•UNDERSTANDING THE DIFFERENCES BETWEEN STANDARDS, FRAMEWORKS, GUIDELINES AND REGULATIONS

PRACTICAL SKILLS (APPLIED KNOWLEDGE AND UNDERSTANDING)
•DOING RESEARCH ON IT-SECURITY STANDARDS
•WRITING A RESEARCH PAPER IN LATEX USING OVERLEAF
•CREATING A TAXONOMY USING MIRO
•PRESENTATION OF THE RESEARCH WORK
•OPTIONALLY PUBLISHING THE RESEARCH PAPER IN A CONFERENCE/JOURNAL
Prerequisites
KNOWLEDGE OF COMPUTER SECURITY ELEMENTS IS REQUIRED.
Contents
•IT-SECURITY GUIDELINES
•IT-SECURITY LAWS/REGULATIONS
•THE NIST CYBER SECURITY FRAMEWORK
•PAYMENT CARD INDUSTRY DATA SECURITY STANDARD (PCI DSS)
•HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT (HIPAA)
•FINANCIAL INDUSTRY REGULATORY AUTHORITY (FINRA)
•THE FEDERAL INFORMATION SECURITY MODERNIZATION ACT (FISMA)
•NORTH AMERICAN ELECTRIC RELIABILITY CORPORATION CRITICAL INFRASTRUCTURE PROTECTION (NERC CIP)
•EU CYBER SECURITY ACT
•OVERVIEW AND TAXONOMY OF IT-SECURITY STANDARDS IN DIFFERENT CONTINENTS
Teaching Methods
•PHD RESEARCH SEMINAR
• ASSIGNMENT OF A RESERACH PROJECT TO WORK INDEPENDENTLY OR IN A GROUP OF MAXIMUM 2 PERSONS
Verification of learning
THE ACHIEVEMENT OF THE LEARNING OBJECTIVES WILL TAKE PLACE THROUGH THE EVALUATION OF THE PROJECT CARRIED OUT AND WITH A FINAL PRESENTATION, REPORT AND Q&A
Texts
THERE IS NO TEXTBOOK. REFERENCES AND LEARNING MATERIALS WILL BE PROVIDED.
More Information
THE LEARNING MATERIAL IS AVAILABLE ON THE DEPARTMENT'S E-LEARNING WEBSITE: HTTPS://ELEARNING.INFORMATICA.UNISA.IT/EL-PLATFORM/
Lessons Timetable

  BETA VERSION Data source ESSE3 [Ultima Sincronizzazione: 2025-03-26]