Cybersecurity Architect (AKB1)

Cybersecurity, ICT Security

The course trains you to design, implement and continuously improve an organisation's information security architecture, aligning technical security controls, operational governance and ISMS/ISO 27001 practices. It links implementation to Czech laws 264/2025, 266/2025 and EU NIS2/CER.

You will learn the role of a Cybersecurity Architect in designing system components, ensuring risk analysis, identity & access controls, logging and auditing, and integrating detection and monitoring. The course also covers supplier management and planning for high availability.

Location, current course term



Brno + online (volitelně)
8/10/2026 - 8/14/2026 CZECH
Order 		11/2/2026 - 11/6/2026 CZECH
Order 		1/25/2027 - 1/29/2027 CZECH
Order
Praha + online (volitelně)
7/20/2026 - 7/24/2026 CZECH
Order 		10/5/2026 - 10/9/2026 CZECH
Order 		12/28/2026 - 1/1/2027 CZECH
Order
Custom Customized Training (date, location, content, duration)

The course:

Hide detail
  • Introduction to the Cybersecurity Act (ZoKB) and risk management
    1. Introduction to current cybersecurity legislation, critical infrastructure and risk management
    2. Requirements of Act No. 264/2025 on Cybersecurity and Act No. 266/2025 on resilience of critical infrastructure entities
    3. NIS2 and CER directives, related laws and standards
    4. Role of the Cybersecurity Architect
    5. Implementing ISMS and ISO 27001 in regulated or critical infrastructure organisations
    6. Critical infrastructure, regulated services and significant information systems
    7. Physical security of critical infrastructure facilities
    8. Risk analysis and risk handling in critical infrastructure environments
    9. Linking security measures to risk analysis
    10. Asset management and governance in regulated environments
    11. Supplier management
  • Identity and access control
    1. Using identities in Windows and Active Directory
    2. Using identities in Linux
    3. User identity management with centralized IdM systems
    4. Access control and secure user behaviour
    5. OS-level resource access control
    6. Database access control
    7. Password management
    8. Implementing 2FA
    9. 2FA vulnerabilities
  • Endpoint security
    1. Antivirus and anti-malware
    2. Next-generation endpoint protection
    3. Data Loss Prevention (DLP) systems
    4. Client certificate management
    5. Disk and USB encryption – BitLocker and EFS
    6. Securing email and web communication
  • Logging and audit
    1. Logging in Windows
    2. Logging in Linux
    3. Application logging
    4. Common logging mechanisms
    5. Defining recording requirements under current cybersecurity legislation
    6. Time sync requirements (NTP)
    7. Network device access logging and handling
    8. OS- and application-level logging
    9. Central tools for log collection and event analysis
    10. Basic SIEM functionality
  • Secure development and applications
    1. Comparison of different application architectures
    2. Application vulnerabilities
    3. Acquisition, development and maintenance
    4. Secure software development principles
    5. Systems Development Life Cycle (SDLC)
    6. Testing developed applications
    7. Using common templates for automation and management
  • Network architecture
    1. Next-generation firewalls
    2. Next-Generation Intrusion Prevention Systems (NGIPS)
    3. DDoS fundamentals and protection methods
    4. L2 and L3 network segmentation principles
    5. Designing DMZs
    6. Grouping and assigning applications to VLANs
    7. VPN implementation and detection of cybersecurity events and incidents
    8. Network and application perspectives
  • Network security
    1. Basic L2 and L3 network design rules
    2. Principles of L2 attacks
    3. ARP-based man-in-the-middle attacks
    4. STP (Spanning Tree) attacks
    5. VLAN attacks
    6. Attacks on L3 routing protocols
    7. Switch configuration recommendations – access control
  • Detection and intrusion monitoring
    1. Requirements for continuous evaluation of cybersecurity events
    2. Behavioral analysis of network traffic
    3. SIEM implementation and deployment
    4. Analysis of detected cybersecurity events
    5. Event evaluation and incident response
  • Ensuring high availability
    1. Business continuity analysis methods
    2. Design requirements for highly available systems
    3. High availability in practice
    4. High availability for control and real-time systems
    5. Links to business continuity analyses
    6. Support and service considerations
    7. SLAs to ensure high availability
    8. Spare parts and replacements
Assumed knowledge:
Basic familiarity with current cybersecurity legislation, TCP/IP and OSI, operating systems, and common technical security controls.
Schedule:
5 days (9:00 AM - 5:00 PM )
Course price:
1 472.00 € (1 781.12 € incl. 21% VAT)
Language:

Vybrané zákaznické reference

Jaroslav Kurinec, Jaroslav K.
Cybersecurity Architect ( AKB1)
"Kurz byl velice zajímavý a přínosný. Pan Urbiš je velice schopný člověk. Jen škoda, že kurz není delší, protože by se mohlo stihnout více labů. "
DAKO-CZ, a.s., Jakub B.
Cybersecurity Architect ( AKB1)
"Skvělá atmosféra, velmi podrobné - budu muset vstřebat informace a znovu přehrát ze záznamu. Neměnil bych nic, jen bych zpomalil v mém případě :-)"
LXL COMPUTER, s.r.o., Luděk R.
Cybersecurity Architect ( AKB1)
"Děkujeme za informačně nabitý týden ;-) "
myonic s.r.o., Kamil K.
Cybersecurity Architect ( AKB1)
"Skvělé praktické ukázky. Školení i pro technicky zaměřené IT. Lektor s širokým přehledem v dané oblasti. Mnoho prezentovaných informací určitě využiji i v praxi."
Inventec (Czech), s.r.o., Jiří T.
Cybersecurity Architect ( AKB1)
"Neskutečná erudice lektora. Oceňuji především jeho přístup a přehled. Odborná úroveň a množství praktických příkladů předčilo mé očekávání. Jednoznačně doporučuji tento kurz komukoliv, kdo to myslí s bezpečností vážně."
Lesy České republiky, s.p., Veronika D.
Cybersecurity Architect ( AKB1)
"Rozsah znalosti skolitele byll neuveritelny. Velmi prinosne skoleni"
Česká zbrojovka a.s., Petr K.
Cybersecurity Architect ( AKB1)
"Konečně školení, ze kterého si člověk něco odnáší do praxe, jen tak dál. Díky"
Česká pošta, s.p., Filip J.
Cybersecurity Architect ( AKB1)
"Skoleni jako takove super."
NEWPS.CZ s.r.o., Jiří F.
Cybersecurity Architect ( AKB1)
"dobre se spoustou ukazek v prubehu"
IZODYNA s.r.o., Marek M.
Cybersecurity Architect ( AKB1)
"Vynikajúci lektor, výborné témy. príklady z praxe. ako vzdy za mna skvele skolenie."