VVZ API is not affiliated with ETH Zurich. Data might be outdated or incorrect. Please view the official ETHZ Vorlesungsverzeichnis for binding information.

365-1194-00L 1 Credits NDS D-MTEC
You're viewing possible stale or outdated data. Please check the latest semester for more up-to-date information.

Cybersecurity for Business Leaders

Lecturers & Examiners: Dr. Stefan Frei, Roger Halbheer
Exclusively for MAS MTEC students (2nd and 4th semester). Minimum number of participants: 15 students.
VVZ CR n/a

Last Updated: 2026-06-01 11:33:46

Abstract

This seminar offers a basic understanding of cybersecurity concepts, the threat landscape, and defense strategies. It covers cyber-attack dynamics, threat modeling, human behavior, economics of security, governance, security operations, and modern architectures. Students gain tools to address challenges, navigate uncertainties, and make informed decisions as business managers in the digital world.

Objective

The seminar aims to provide a basic understanding of cybersecurity concepts, the evolving threat landscape, and modern security strategies. It is designed for future leaders and managers seeking a comprehensive understanding of cybersecurity’s key drivers to make informed decisions both individually and in business contexts. • Understand cybersecurity fundamentals • Recognize evolving cyber threats, including attacker techniques, motivations, and capabilities. • Assess cybersecurity challenges from technical, economic, business, and social viewpoints. • Understand the roles of attackers, defenders, and societal impacts in the broader security ecosystem. • Understand the interplay of human behavior, system complexity, and governance in creating vulnerabilities and solutions and operational resilience. • Model threats and evaluate resilience strategies to address uncertainty and complexity.

Content

- The landscape of cyber threats is vast and complex, requiring a detailed understanding of various attacker and attack classifications. Key threats such as botnets and ransomware form the crux of modern cyber concerns. By examining models like the cyber kill chain, one can decipher the asymmetry between attack and defense, highlighting the inherent challenges in securing digital environments. - Rapid technology innovation brings with it significant implications. Human biases and limitations play a critical role, often leading to errors in complex systems. Economic factors contribute to security failures, explaining why secure products frequently fail to prevail in the market. Understanding these dynamics is essential for developing more robust security measures. - The lifecycle of software vulnerabilities is a critical area of focus. This includes the treatment of vulnerabilities, the distinction between black and white markets for exploits, and the coordinated disclosure process. Bug bounty programs have become a popular method for identifying and mitigating security flaws, underscoring the importance of proactive security measures. - Complexity in systems poses significant challenges. Controlling highly interactive systems necessitates a balance between prevention and impact management. Concepts such as resilient systems, secure software development processes, and chaos-engineering are vital in navigating this complexity. These approaches aim to enhance system robustness and maintain security in the face of adversities. - Effective cyber security governance is fundamental to organizational security. This encompasses the design and implementation of security policies, dynamic governance practices, and data governance frameworks. Security operations, including monitoring, incident response, and crisis management, are integral to maintaining a secure posture and addressing threats in real-time. - Modern security architectures have evolved from traditional fortress models to zero-trust frameworks. This shift necessitates a change in mindset and a focus on managing human factors within the security landscape. Change management and people management are crucial in adapting to this new paradigm and ensuring that security measures are both effective and sustainable. - Theoretical knowledge is complemented by practical insights through case studies, live demonstrations, and interactive sessions. These elements provide a comprehensive understanding and allow for in-depth discussions, ensuring that participants are well-equipped to tackle the evolving challenges in cyber security.

General Information

Language
English
Levels
NDS
Frequency
Yearly recurring

Examination

Type
ungraded semester performance
Credit points will only be assigned if the following criteria are met: Full attendance of all course days and full completion of all course assignments.

Registration & Places

Max Places
60
Signup End
09.02.2025
Priority: Registration for the course unit is only possible for the primary target group

Course Components

Type Title Time & Place Hours
seminar Cybersecurity for Business Leaders
Three-day course. Thursday and Friday: 08:30-17:00; Saturday: 08:30-16:45
  • 03.04 Date 08:15-17:00 (ML H 37.1)
  • 04.04 Date 08:15-17:00 (ML H 37.1)
  • 05.04 Date 08:15-17:00 (ML H 37.1)
24 h semesterly

Offered In