Postgraduate studies

Protection of Classified Information and Personal Data

In the 2021/22 academic year, we are recruiting for another group for postgraduate studies in Protection of Classified Information and Personal Data.

Tutor of postgraduate studies: mgr. Elżbieta Woźniakowska, mobile number 795 990 822

Recruitment for Postgraduate Studies in Protection of Classified Information and Personal Data

Warsaw School of Management - University - Warsaw Studies

Warsaw School of Management-University
01-204 Warsaw
st. Siedmiogrodzka 3 A
Tel +022 862 32 24
Email: podymium@wsz-sw.edu.pl

Postgraduate studies in Protection of Classified Information and Personal Data

The Warsaw School of Management - University of Warsaw intends to launch the fourth edition of the Postgraduate Studies in the Protection of Classified Information and Personal Data in the near future. It is worth noting that the previous three editions were very popular. The aim of the studies is to provide knowledge in the field of professional protection of classified information and personal data based on domestic and foreign experience. The studies we offer are intended for people who manage classified information and personal data protection divisions in civil and military institutions, enterprises and military units, for people working in these divisions or intending to work in them.

Classes are conducted in the form of lectures, exercises and seminars. The study program includes knowledge of the legal aspects of the protection of classified information and personal data, the functioning and tasks of institutions responsible for the protection of classified information and personal data, personal security, security in ICT systems and networks, and the right to use classified information and personal data.

Studies are focused on solving practical problems and will be conducted mainly by practitioners in this field. During them, we educate skills related to mastering the methods and applying procedures for the protection of classified information and personal data, as well as the supervision and control of compliance with the provisions on the protection of classified information and personal data. During their studies, students of, among others carry out projects of physical protection of an organizational unit and learn the secrets of the work of the representative for the protection of classified information, personal data and the office, as well as the administrator of ICT networks.

The studies last two semesters. Classes will be held at the seat of the university in Warsaw at ul. Siedmiogrodzka 3A every two weeks on weekends - on Saturdays and Sundays (8 teaching hours a day). 

In addition, interested persons can obtain a certificate of completion of the course in the field of secret office services (16 hours of additional practical classes).

It is also possible to obtain a certificate for an additional fee Information Security Auditor by ISO / IEC 27001 (16 hours of additional classes), issued by the University cooperating with our University QUALITY PLATFORM.

Detailed information can be obtained from:
Elżbieta Woźniakowska - tel. (22) 862-32-24;
Email: elzbieta.wozniakowska@wsz-sw.edu.pl

Application form for download: Data protection

The detailed study program includes the following subjects and issues in the amount of 182 hours of classes:

I. Classified information protection system / 20 hours /.

1. Formal and legal conditions for the protection of classified information and other legally protected information.
2. Evolution of the classified information protection system
3. The system of protection of classified information of the Republic of Poland.
- Legal bases and rules for the organization of the oin system;
- Organizational structure of the oin system;
- Components of the oin system;
- Functioning of the oin system
4. Security system in an organizational unit
- Building the oin system;
- Components of the oin system;
- Functioning of the oin system.
5. The objective scope of the Act on the protection of classified information.
6. Organizing the protection of classified information during meetings, briefings and exercises.
7. Threats to the protection of classified information
8. Explanatory proceedings regarding the protection of classified information
9. Management of classified information in an organizational unit.

II. Personal security / 25 hours /.

- Basic concepts in the field of classified information protection, personal security, classification, access and disclosure of classified information;
- Criminal, disciplinary and official liability for the violation of the provisions on the protection of classified information;
- Obligations of the security officer in terms of personal security
- Types of verification procedures;
- Types of security credentials and security certificates;
- Binding forms and forms in verification procedures,
- Personal security survey (rules for filling and evaluating);
- Implementation of checking procedures, completing the APS file;
- Rules for the implementation of control procedures;
- Rules for the implementation of appeal and complaint procedures;
- Personal security in the aspect of protection of classified information in NATO;
- Personal security in terms of protection of classified information in the EU;
- NATO and EU security certificates and approvals;
- international agreements;

III. Classified information protection training / 10 hours /.

IV. Protection of classified information in NATO and the European Union / 5 hours /.

V. ICT security / 25 hours /.

1. General information.
2. Officials responsible for ICT security.
3. Principles of ICT security.
4. Security factors influencing ICT security.
- Physical security of ICT systems and networks.
- Personal security.
- Hardware security.
- Cryptographic protection.
- Transmission security.
5. Access control to the ICT system or networks.
- Password requirements.
6. Documentation in the field of ICT security.
7. Admitting systems and networks to processing classified information.
8. Security checks.
9. Information security.
10.Portable ICT systems.
11. Malicious software and viruses.
12. Detection of "Malicious Code"

VI. Physical protection of classified information (industrial security) / 20 hours /.

1. Responsibilities of the head of the organizational unit in the field of physical protection of classified information.
2. Threats to the functioning of the system of physical protection of classified information.
3. Documentation specifying the level of threats related to unauthorized access to classified information.
4. Basic criteria and method of determining the level of threats and the selection of physical security measures appropriate to the indicated level of threats.
5. Principles of developing plans for the protection of classified information in organizational units.
6. Conditions for the transportation of classified materials. Counteracting threats to the security of classified information.
7. Obligations of the entrepreneur in the performance of contracts related to access to classified information.
8. Properties and powers of the Internal Security Agency and the Military Counterintelligence Service in the field of industrial security.
9. Procedures aimed at obtaining an industrial safety certificate by an entrepreneur.
10. The role and obligations of the client during the preparation and implementation of the contract related to access to classified information.
11. Principles of developing a draft of industrial safety instructions.

VII. Controls in the field of the protection of classified information / 10 hours /.

1. Control activities - forms and types.
2. Tasks and powers of the Supreme Audit Office, ABW, SKW and persons responsible in the organizational unit for supervising the protection of classified information.
3. Objectives, forms and methods of controlling the state of classified information protection - documenting the results of the control.
4. Conclusions resulting from the control activity in the field of classified information protection.
5. Explanatory proceedings in an organizational unit.

exercises:

6. Practical methods of carrying out control activities regarding the protection of classified information.

VIII. Secret office and execution of classified documents / 25 hours /.

1. Types of contemporary documentation.
2. Generally binding archival regulations.
3. Preparation of office instructions, a uniform material list of files and instructions from the company archive.
4. Division of the creator's documentation - archival classification and qualification of documentation.
5. Tasks of records, storage and protection of documentation carried out as part of electronic documentation management.
6. Organizing and transferring documentation to the company's archives.
7. Basic rules for the evaluation of archival documentation, its removal and destruction.
8. Procedure with documentation in the event of reorganization or liquidation of an organizational unit.
9. Organization and functioning of the secret office.
10. Classifying classified information and marking classified materials, including classification clauses.
11. Organization of the circulation of classified documents - rules of keeping records.
12. Principles for the preparation of instructions on the method and manner of processing classified information classified as "restricted" and "confidential".
13. Principles of posting, receiving, sharing, transferring, transporting and protecting materials containing classified information.
14. Handling international classified documents.
15. Rules for completing and storing classified materials and their destruction.
16. Handling classified documentation in the event of reorganization or liquidation of an organizational unit.

IX. Legal acts regulating the issue of protection of classified information / 5 hours /.

X. Personal data protection system / 25 hours /.

1. Legal basis for the protection of personal data
2. Principles of personal data processing
3. Duties and tasks of the data controller resulting from the GDPR
4. Rights of data subjects
5. Security of personal data
6. Documentation of personal data processing
7. Role and tasks of the Data Protection Officer (DPO)
8. Transfer of personal data to third countries
9. Supervision and control of compliance with provisions on the protection of personal data
10. Role and tasks of the President of the Personal Data Protection Office (UODO)
11. Protection of personal data in the employment relationship
12. Liability and sanctions for failure to comply with the provisions on the protection of personal data.

XI. Means of protection of classified information and procedures in emergency situations or in the event of their disclosure / 12 hours /

Phone number