Inhoudsopgave
Leeswerk....................................................................................................................................................................3
Hoorcolleges..............................................................................................................................................................4
De drie werelden van digitalisering...........................................................................................................................5
Gevolgen van digitalisering.......................................................................................................................................7
Predictive policing.............................................................................................................................................7
Cybernetische loop............................................................................................................................................7
Criminaliteits anticipatie systeem (CAS)...........................................................................................................8
Privacy.....................................................................................................................................................................10
Algemene Verordening Gegevensbescherming (AVG)...........................................................................................11
Privacy Impact Assessment (PIA)............................................................................................................................12
BIV-driehoek............................................................................................................................................................14
Parkerian hexad...............................................................................................................................................14
Sociale theorieën voor informatieveiligheid...........................................................................................................15
Social Engineering...........................................................................................................................................15
Routine Activity Theorie..................................................................................................................................15
Overtuigingsprincipes van Cialdini..................................................................................................................15
De duale systeemtheorie................................................................................................................................16
beredenerend gedrag (ASE)............................................................................................................................16
Techniek, organisatie en gedrag.....................................................................................................................16
Cognitieve dissonantie theorie.......................................................................................................................17
Conditionering.................................................................................................................................................17
Cyber security beeld van Nederland.......................................................................................................................18
Kernproblematiek............................................................................................................................................18
Basiskennis informatiebeveiliging...........................................................................................................................21
H3. Termen en definities.....................................................................................................................................21
Beveiligingsconcepten.....................................................................................................................................21
Beoordeling van veiligheidsrisico’s.................................................................................................................21
Beveiligingsrisico’s beperken..........................................................................................................................22
Soorten dreigingen..........................................................................................................................................23
H4. Context van de organisatie...........................................................................................................................23
Due care & Due diligence................................................................................................................................24
Informatiemanagement..................................................................................................................................24
H5. Beveiliging.....................................................................................................................................................24
H6. Organisatie van informatiebeveiliging..........................................................................................................24
Functiescheiding..............................................................................................................................................25
, H7. Personeel en informatiebeveiliging..............................................................................................................25
Voorafgaand aan het dienstverband..............................................................................................................25
Tijdens het dienstverband...............................................................................................................................25
H8. Asset management.......................................................................................................................................26
Informatieclassificatie.....................................................................................................................................26
Omgang met media.........................................................................................................................................26
H9. Toegangscontrole.........................................................................................................................................26
Beheer toegangscontrole................................................................................................................................27
Acces control system.......................................................................................................................................27
H10. Cryptografie................................................................................................................................................28
Soorten Cryptografische systemen.................................................................................................................29
Kenmerken van een sleutelpaar.....................................................................................................................30
H11. Fysieke beveiliging......................................................................................................................................31
H12. Operations Security....................................................................................................................................32
Changemanagement.......................................................................................................................................33
Capaciteitsmanagement.................................................................................................................................33
Bescherming tegen malware, phishing en spam............................................................................................33
Difinities...........................................................................................................................................................34
Back-up............................................................................................................................................................36
Logging en monitoring....................................................................................................................................36
Controle van software.....................................................................................................................................36
Beheersing van technische kwetsbaarheden..................................................................................................37
Begrippenlijst...........................................................................................................................................................38
,LEESWERK
De Vries, A. & Smit, S. (2016). Predictive policing: politiewerk aan de hand van
voorspellingen. JUSTITIËLE VERKENNINGEN, 42(1). 9-22. (Koppelingen naar een externe
site.)
Hoofdstuk 2 (pagina 26 tot en met 45), van: Kool, L., Timmer, L., Royakkers, L. & Van Est, R.
(2017). OPWAARDEREN - BORGEN VAN PUBLIEKE WAARDEN IN DE DIGITALE
SAMENLEVING . Den Haag: Rathenau. (Koppelingen naar een externe site.)
Bol, R. & Martijn, M. (2018). Dit moet je weten over de nieuwe privacywet. DE CORRESPONDENT.
Opgeroepen op 15 januari, 2020, van: https://decorrespondent.nl/8291/dit-moet-je-weten-over-
de-nieuwe-privacywet/3964772591307-118abcdd (Koppelingen naar een externe site.)
Martijn, M. (2014). Deze bevlogen professor helpt je doorgronden wat privacy is. DE CORRESPONDENT.
Opgeroepen op 15 januari 2020, van: https://decorrespondent.nl/1998/deze-bevlogen-professor-
helpt-je-doorgronden-wat-privacy-is/955447550046-e476e22e
Nationaal Coördinator Terrorismebestrijding en Veiligheid (2019). Cyber Security Beeld
Nederland 2019. Den Haag: NCTV. Hoofdstukken 1 tot en met 5. (Koppelingen naar een
externe site.)
Ministerie van BZK (2017). Model Gegevensbeschermingseffectbeoordeling Rijksdienst
(PIA), Den Haag. (Koppelingen naar een externe site.)
Autoriteit persoonsgegevens (2018). In 10 stappen voorbereid op de AVG
Bullée, J., Montoya, L., Junger, M. & Hartel, P. (2018). Het succes van social engineering.
TIJDSCHRIFT VOOR VEILIGHEID, 17( 1-2). 40-53.
Baars H., Hintzbergen J., Hintzbergen K. en Smulders A. (2015). Basiskennis informatiebeveiliging op
basis van ISO 27001 en 27002. 2e (herziene) druk. Zaltbommel, Van Haren Publishing. Hoofdstukken
3, 5, 6, 7, 8 , 9, 10, 11 en 12.
, HOORCOLLEGES
Informatieveiligheid is het treffen van een optimaal samenhangend pakket van maatregelen op procesmatig,
organisatorisch en technisch gebied, dat er op is gericht op de vertrouwelijkheid, integriteit en beschikbaarheid
van informatie, en hierdoor de continuïteit van de bedrijfsvoering te waarborgen.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller RSCHO. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $7.52. You're not tied to anything after your purchase.