WP4 – Educational Activities and Cooperation with Secondary Schools
Training Activities
Fundamentals of Cyber and Information Security for Public Administration
At the end of 2025, we ran the “Basics of Cyber and Information Security” training courses for the public administration, prepared by the Competence and Educational Centre for Cyber and Information Security of TUKE (CCC TUKE).
The course was designed for laymen, specialist staff, and managers within the public administration. Across seven thematic modules, it guided participants through the entire spectrum of cyber and information security—ranging from current threats, specialist terminology, and legislation (the Cyber Security Act, NBÚ decrees, and the European framework), through risk identification and management, the basics of operating systems and computer networks, an overview of attack types, and encryption principles, all the way to practical protection (antivirus and firewall configuration, data backup, phishing protection, an introduction to penetration testing) and advanced topics such as AI in CIS, cloud security, and the Internet of Things (IoT).
We placed an emphasis on bridging theory with practice, with the teaching including live demonstrations in a test environment, such as working with the command line and network tools or verifying password strength.
Cyber and Information Security for Public Administration Professionals
We have successfully run another iteration of the “Cyber and Information Security for Public Administration Experts” course, prepared as part of the project by the Competence and Educational Centre for Cyber and Information Security of TUKE. The course was designed for IT managers, IT specialists, security personnel, and other professionals involved in protecting information systems and infrastructure in the public sector.
Across seven online modules, we focused on securing network devices (AAA models, IDS/IPS, VPN, Cisco ASA), an introduction to cryptography, and notably penetration testing—ranging from planning and scoping in the public administration context, through passive and active reconnaissance (OSINT, nmap), vulnerability scanning (GVM), and social engineering (SET, BeEF), to exploiting network and application layer vulnerabilities (OWASP TOP 10, SQL Injection, XSS, CSRF).
There was also a focus on cloud, mobile, and IoT security, working with tools such as Metasploit and netcat, creating professional reports using Dradis, and solving model scenarios. In terms of content, the course builds upon the international Cisco Ethical Hacker programme and is based on hands-on work in virtual laboratories. Participants were thus able to test procedures directly within Kali Linux, Cisco Packet Tracer, and real-world security tools.
Workshops
Cyber Security
The workshop was aimed at students who do not study computer science. We focused on everyday cybersecurity issues with activities centered on OSINT. Topics covered: CIA triad, cybersecurity, phishing, social engineering, OSINT, passwords, 2FA, and tools for checking suspicious content. Given that they study an economics and law field, we touched upon Act No. 69/2018 and Act No. 95/2019 only very briefly.
- Date: 18 February 2026
- Venue: Private Secondary Vocational School, 29. augusta street, Poprad, Tatranská akadémia (Tatry Academy)
- Duration: 90 minutes