Krízový manažment - Ročník 24.; Číslo 2/2025

Permanent URI for this collectionhttps://drepo.uniza.sk/handle/hdluniza/1366

Browse

Author: search.filters.author.Mačuha, TimotejHas files: Yes

Search Results

Now showing 1 - 2 of 2
  • Thumbnail Image
    Item
    Cost-benefit analysis as a tool to strengthen organisational cyber resilience
    (University of Žilina, 2025) Kampová, Katarína; Madleňák, Matúš; Mačuha, Timotej; Hromada, Martin; Hubočan, Samuel
    Organisations face a wide range of cyber threats with significant operational, financial and reputational impacts. Strengthening resilience therefore requires not only technical and organisational measures, but also clear economic justification. Cost–Benefit Analysis (CBA) is a well-established method that compares the costs of security measures with their benefits, such as reducing the likelihood of incidents, limiting their impact or shortening recovery times. In line with NIS2 and ISO/IEC 27001:2022 and ISO/IEC 27005:2023, CBA supports proportionate, risk-based and cost-effective security. This paper outlines the methodology, its role in decision-making, and a practical example of its application in enhancing cyber resilience and trust.
  • Thumbnail Image
    Item
    Dodávateľský reťazec a kybernetická bezpečnosť
    (University of Žilina, 2025) Sokolová, Ľubomíra; Madleňák, Matúš; Mačuha, Timotej
    The NIS2 Directive is an updated version of the original 2016 NIS Directive and aims to strengthen the protection and security of the EU’s cyberspace. Unlike the first directive, NIS2 focuses on the cybersecurity and resilience of key entities and entire sectors in the face of modern threats. EU Member States are required to transpose it into their national legal systems. In Slovakia, the requirements of NIS2 were implemented through an amendment to the Act on Cybersecurity. The amendment, prepared by the National Security Authority, entered into force on January 1, 2025. It modifies and supplements the original Act No. 69/2018 Coll. and introduces several fundamental changes. One of the key elements is the enhancement of supply chain security. This protection is ensured primarily through contractual mechanisms based on the Act and on Decree No. 227/2025 of the National Security Authority. Contractual obligations must also reflect the requirements of the GDPR. The article focuses mainly on contractual protection within supply chains and its alignment with GDPR requirements.