{"id":38,"date":"2021-03-08T17:45:40","date_gmt":"2021-03-08T17:45:40","guid":{"rendered":"http:\/\/www.d-eye.cz\/domains\/d-eye.cz\/?page_id=38"},"modified":"2025-03-17T10:20:15","modified_gmt":"2025-03-17T09:20:15","slug":"produkty-a-sluzby-2","status":"publish","type":"page","link":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/produkty-a-sluzby-2\/","title":{"rendered":"Zabezpe\u010den\u00ed bezpe\u010dnostn\u00edch rol\u00ed kybernetick\u00e9 bezpe\u010dnosti"},"content":{"rendered":"\n<p>Nab\u00edz\u00edme <strong>person\u00e1ln\u00ed zabezpe\u010den\u00ed bezpe\u010dnostn\u00edch rol\u00ed<\/strong> ke spln\u011bn\u00ed povinnost\u00ed vypl\u00fdvaj\u00edc\u00edch z regulace kybernetick\u00e9 bezpe\u010dnosti podle NIS2:<\/p>\n\n\n\n<p><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-vivid-cyan-blue-color\"><strong>Mana\u017eera kybernetick\u00e9 bezpe\u010dnosti (Mana\u017eer KB)<\/strong><\/mark>, tj. osoby odpov\u011bdn\u00e9 za syst\u00e9m \u0159\u00edzen\u00ed bezpe\u010dnosti informac\u00ed.<\/p>\n\n\n\n<p>Pro roli Mana\u017eer KB nab\u00edz\u00edme nez\u00e1visl\u00e9ho, zku\u0161en\u00e9ho a odborn\u011b zp\u016fsobil\u00e9ho pracovn\u00edka, kter\u00fd spl\u0148uje povinnou odbornou zp\u016fsobilost (Certifik\u00e1t) a praxi v oblasti kybernetick\u00e9 bezpe\u010dnosti, p\u0159edev\u0161\u00edm v&nbsp;\u0159\u00edzen\u00ed bezpe\u010dnosti informac\u00ed po dobu \u010dty\u0159 let.<\/p>\n\n\n\n<p>D\u00edky mnohalet\u00fdm zku\u0161enostem v oblasti syst\u00e9mu \u0159\u00edzen\u00ed informa\u010dn\u00ed bezpe\u010dnosti (S\u0158BI), prosazuje n\u00e1\u0161 Mana\u017eer KB nejen soulad s po\u017eadavky legislativy ke kybernetick\u00e9 bezpe\u010dnosti, ale hodnot\u00ed i soulad bezpe\u010dnostn\u00edch opat\u0159en\u00ed s nejlep\u0161\u00ed prax\u00ed.<\/p>\n\n\n\n<p>Nab\u00edzen\u00fd rozsah zodpov\u011bdnost\u00ed bezpe\u010dnostn\u00ed role:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>pravideln\u00e9 informov\u00e1n\u00ed vrcholov\u00e9ho veden\u00ed Organizace o \u010dinnostech, kter\u00e9 vypl\u00fdvaj\u00ed z rozsahu jeho odpov\u011bdnosti a stavu syst\u00e9mu \u0159\u00edzen\u00ed informa\u010dn\u00ed bezpe\u010dnosti (S\u0158BI)<\/li>\n\n\n\n<li>zvl\u00e1d\u00e1n\u00ed bezpe\u010dnostn\u00ed situace v\u010detn\u011b vyhodnocov\u00e1n\u00ed a klasifikace kybernetick\u00fdch bezpe\u010dnostn\u00ed incident\u016f (KBI), dokumentov\u00e1n\u00ed jejich zvl\u00e1d\u00e1n\u00ed a pro\u0161et\u0159ov\u00e1n\u00ed a ur\u010dov\u00e1n\u00ed p\u0159\u00ed\u010din jejich vzniku,<\/li>\n\n\n\n<li>vyhodnocov\u00e1n\u00ed \u00fa\u010dinnost preventivn\u00edch a reaktivn\u00edch opat\u0159en\u00ed aplikovan\u00fdch proti vzniku KBI,<\/li>\n\n\n\n<li>zaji\u0161t\u011bn\u00ed proveden\u00ed reaktivn\u00edch opat\u0159en\u00ed vyhl\u00e1\u0161en\u00fdch dozorov\u00fdm \u00da\u0159adem (N\u00daKIB),<\/li>\n\n\n\n<li>\u0159\u00edzen\u00ed rizik a hrozeb intern\u00edch syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby,<\/li>\n\n\n\n<li>hl\u00e1\u0161en\u00ed a komunikace s&nbsp;N\u00daKIB,<\/li>\n\n\n\n<li>odpov\u011bdnost za zaji\u0161t\u011bn\u00ed odstran\u011bn\u00ed nedostatk\u016f zji\u0161t\u011bn\u00fdch p\u0159i intern\u00edch auditech a kontrol\u00e1ch N\u00daKIB,<\/li>\n\n\n\n<li>n\u00e1vrhy \u00faprav a aktualizace bezpe\u010dnostn\u00ed dokumentace na z\u00e1klad\u011b zji\u0161t\u011bn\u00ed z audit\u016f kybernetick\u00e9 bezpe\u010dnosti, v\u00fdsledk\u016f vyhodnocen\u00ed \u00fa\u010dinnosti syst\u00e9mu S\u0158BI a v souvislosti s prov\u00e1d\u011bn\u00fdmi nebo pl\u00e1novan\u00fdmi zm\u011bnami regulovan\u00fdch slu\u017eeb,<\/li>\n\n\n\n<li>zaji\u0161\u0165ov\u00e1n\u00ed proveden\u00ed anal\u00fdzy rizik a hodnocen\u00ed aktiv a na z\u00e1klad\u011b v\u00fdstup\u016f anal\u00fdzy rizik zpracov\u00e1n\u00ed a vytvo\u0159en\u00ed dokumentu \u201ePl\u00e1n zvl\u00e1d\u00e1n\u00ed rizik&#8221;.<\/li>\n<\/ul>\n\n\n\n<p>Pro roli Architekt KB nab\u00edz\u00edme nez\u00e1visl\u00e9ho, zku\u0161en\u00e9ho a odborn\u011b zp\u016fsobil\u00e9ho pracovn\u00edka, kter\u00fd spl\u0148uje povinnou odbornou zp\u016fsobilost (Certifik\u00e1t) a praxi v&nbsp;navrhov\u00e1n\u00ed bezpe\u010dnostn\u00ed architektury po dobu \u010dty\u0159 let.<\/p>\n\n\n\n<div style=\"height:34px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-list\">\n<li><\/li>\n<\/ul>\n\n\n\n<p><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-vivid-cyan-blue-color\"><strong>Architekta kybernetick\u00e9 bezpe\u010dnosti (Architekt KB)<\/strong><\/mark>, tj. osoby zaji\u0161\u0165uj\u00edc\u00ed n\u00e1vrh implementace bezpe\u010dnostn\u00edch opat\u0159en\u00ed pro zaji\u0161t\u011bn\u00ed bezpe\u010dn\u00e9 architektury syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby.<\/p>\n\n\n\n<p>D\u00edky mnohalet\u00fdm zku\u0161enostem v oblasti navrhov\u00e1n\u00ed implementace bezpe\u010dnostn\u00edch opat\u0159en\u00ed pro zaji\u0161t\u011bn\u00ed bezpe\u010dn\u00e9 architektury syst\u00e9m\u016f ICT, prosazuje n\u00e1\u0161 Architekt KB nejen soulad s po\u017eadavky legislativy ke kybernetick\u00e9 bezpe\u010dnosti, ale hodnot\u00ed i soulad bezpe\u010dnostn\u00edch opat\u0159en\u00ed s nejlep\u0161\u00ed prax\u00ed.<\/p>\n\n\n\n<p>Nab\u00edzen\u00fd rozsah zodpov\u011bdnost\u00ed bezpe\u010dnostn\u00ed role:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>implementace rozhodnut\u00ed N\u00daKIB o reaktivn\u00edm opat\u0159en\u00ed, ochrann\u00e9m opat\u0159en\u00ed nebo varov\u00e1n\u00ed,<\/li>\n\n\n\n<li>posuzov\u00e1n\u00ed zaji\u0161t\u011bn\u00ed bezpe\u010dnosti prvk\u016f, kter\u00e9 tvo\u0159\u00ed podp\u016frn\u00e1 aktiva ve vazb\u011b na prim\u00e1rn\u00ed aktiva regulovan\u00fdch slu\u017eeb,<\/li>\n\n\n\n<li>ur\u010dov\u00e1n\u00ed kl\u00ed\u010dov\u00fdch podm\u00ednek, princip\u016f a model\u016f architektury syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby,<\/li>\n\n\n\n<li>posuzov\u00e1n\u00ed a navrhov\u00e1n\u00ed technologi\u00ed,<\/li>\n\n\n\n<li>stanovov\u00e1n\u00ed koncepce bezpe\u010dnostn\u00edho rozvoje syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby,<\/li>\n\n\n\n<li>p\u0159ipom\u00ednkov\u00e1n\u00ed bezpe\u010dnostn\u00ed architektury syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby v\u010detn\u011b podp\u016frn\u00fdch technick\u00fdch aktiv,<\/li>\n\n\n\n<li>definov\u00e1n\u00ed po\u017eadavk\u016f na n\u00e1stroje pro zaji\u0161t\u011bn\u00ed technick\u00fdch opat\u0159en\u00ed kybernetick\u00e9 bezpe\u010dnosti,<\/li>\n\n\n\n<li>odpov\u011bdnost za popis zaji\u0161t\u011bn\u00ed fyzick\u00e9 bezpe\u010dnosti syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby,<\/li>\n\n\n\n<li>odpov\u011bdnost za obsah a aktu\u00e1lnost dokumentu \u201ePolitika \u0159\u00edzen\u00ed provozu a komunikac\u00ed\u201c,<\/li>\n\n\n\n<li>dohled na implementaci bezpe\u010dnostn\u00edch opat\u0159en\u00ed,<\/li>\n\n\n\n<li>navrhov\u00e1n\u00ed opat\u0159en\u00ed pro odvr\u00e1cen\u00ed a zm\u00edrn\u011bn\u00ed dopadu kybernetick\u00e9ho bezpe\u010dnostn\u00edho incidentu (KBI),<\/li>\n\n\n\n<li>vytv\u00e1\u0159en\u00ed a udr\u017eov\u00e1n\u00ed modelu architektury kybernetick\u00e9 bezpe\u010dnosti,<\/li>\n\n\n\n<li>n\u00e1vrhy opat\u0159en\u00ed pro zv\u00fd\u0161en\u00ed odolnosti syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby v\u016f\u010di KBI s&nbsp;vyu\u017eit\u00edm technick\u00fdch n\u00e1stroj\u016f pro zaji\u0161\u0165ov\u00e1n\u00ed stanoven\u00e9 \u00farovn\u011b dostupnosti,<\/li>\n\n\n\n<li>stanovov\u00e1n\u00ed a aktualizace postup\u016f pro proveden\u00ed opat\u0159en\u00ed vydan\u00fdch N\u00daKIB, se zohledn\u011bn\u00edm v\u00fdsledk\u016f hodnocen\u00ed rizik, proveden\u00fdch opat\u0159en\u00ed, stavu dot\u010den\u00fdch bezpe\u010dnostn\u00edch opat\u0159en\u00ed a vyhodnocov\u00e1n\u00ed p\u0159\u00edpadn\u00fdch negativn\u00edch dopad\u016f na provoz a bezpe\u010dnost syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby.<\/li>\n<\/ul>\n\n\n\n<div style=\"height:33px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-list\">\n<li><\/li>\n<\/ul>\n\n\n\n<p><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-vivid-cyan-blue-color\"><strong>Auditora kybernetick\u00e9 bezpe\u010dnosti (Auditor KB)<\/strong><\/mark>, tj. osoby prov\u00e1d\u011bj\u00edc\u00ed audit kybernetick\u00e9 bezpe\u010dnosti.<\/p>\n\n\n\n<p>Pro roli Auditor KB nab\u00edz\u00edme nez\u00e1visl\u00e9ho, zku\u0161en\u00e9ho a odborn\u011b zp\u016fsobil\u00e9ho pracovn\u00edka, kter\u00fd spl\u0148uje povinnou odbornou zp\u016fsobilost (Certifik\u00e1t) a praxi s prov\u00e1d\u011bn\u00edm audit\u016f kybernetick\u00e9 bezpe\u010dnosti po dobu po dobu t\u0159ech let.<\/p>\n\n\n\n<p>D\u00edky mnohalet\u00fdm zku\u0161enostem s prov\u00e1d\u011bn\u00edm audit\u016f v oblasti syst\u00e9mu \u0159\u00edzen\u00ed informa\u010dn\u00ed bezpe\u010dnosti, posuzuje n\u00e1\u0161 auditor nejen soulad s po\u017eadavky kybernetick\u00e9ho z\u00e1kona, ale hodnot\u00ed i soulad bezpe\u010dnostn\u00edch opat\u0159en\u00ed s nejlep\u0161\u00ed prax\u00ed.<\/p>\n\n\n\n<p>Nab\u00edzen\u00fd rozsah zodpov\u011bdnost\u00ed bezpe\u010dnostn\u00ed role:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>organizace a koordinace audit\u016f kybernetick\u00e9 bezpe\u010dnosti syst\u00e9m\u016f ICT poskytuj\u00edc\u00edch regulovan\u00e9 slu\u017eby,<\/li>\n\n\n\n<li>prov\u00e1d\u011bn\u00ed pravideln\u00fdch audit\u016f dle norem kvality a spolupr\u00e1ce p\u0159i odstra\u0148ov\u00e1n\u00ed neshod,<\/li>\n\n\n\n<li>formulace z\u00e1sad v oblasti auditov\u00e1n\u00ed,<\/li>\n\n\n\n<li>uplat\u0148ov\u00e1n\u00ed z\u00e1sad auditu kybernetick\u00e9 bezpe\u010dnosti,<\/li>\n\n\n\n<li>Pl\u00e1nov\u00e1n\u00ed auditu kybernetick\u00e9 bezpe\u010dnosti<\/li>\n\n\n\n<li>Prov\u00e1d\u011bn\u00ed auditu kybernetick\u00e9 bezpe\u010dnosti<\/li>\n\n\n\n<li>Zpracov\u00e1n\u00ed z\u00e1v\u011bre\u010dn\u00fdch auditorsk\u00fdch zpr\u00e1v a auditorsk\u00fdch v\u00fdrok\u016f v oblasti kybernetick\u00e9 bezpe\u010dnosti<\/li>\n\n\n\n<li>Vyhodnocov\u00e1n\u00ed syst\u00e9m\u016f \u0159\u00edzen\u00ed kybernetick\u00e9 bezpe\u010dnosti v organizaci<\/li>\n\n\n\n<li>Uplat\u0148ov\u00e1n\u00ed z\u00e1sad managementu \u0159\u00edzen\u00ed bezpe\u010dnosti informac\u00ed<\/li>\n\n\n\n<li>Orientace v organizaci a metod\u00e1ch kontroly \u0159\u00edzen\u00ed bezpe\u010dnosti<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Nab\u00edz\u00edme person\u00e1ln\u00ed zabezpe\u010den\u00ed bezpe\u010dnostn\u00edch rol\u00ed ke spln\u011bn\u00ed povinnost\u00ed vypl\u00fdvaj\u00edc\u00edch z regulace kybernetick\u00e9 bezpe\u010dnosti podle NIS2: Mana\u017eera kybernetick\u00e9 bezpe\u010dnosti (Mana\u017eer KB), tj. osoby odpov\u011bdn\u00e9 za syst\u00e9m<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-38","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/pages\/38","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/comments?post=38"}],"version-history":[{"count":10,"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/pages\/38\/revisions"}],"predecessor-version":[{"id":338,"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/pages\/38\/revisions\/338"}],"wp:attachment":[{"href":"https:\/\/www.d-eye.cz\/domains\/d-eye.cz\/wp-json\/wp\/v2\/media?parent=38"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}