Final State Exam Questions – N-RSSS_A Software Systems and Services Management

Common Core Programme

  1. Software Engineering. The process of software development. Unified Process (UP) methodology. Agile software development. Testing phases and test types. Software metrics, code refactoring. Effort estimation. Maintenance and reusability. Software quality. (PA017)
  2. Information security. Audit, security management, risk management, countermeasures. Security assessment, evaluation criteria and processes. Standards in IT security and cryptography, legislation related to cryptography. Digital signature - design, legislation, public key management, certification authorities and public key infrastructure. User authentication in computer systems - secret, tokens, biometrics. Identification systems and identity management. (PA018, PV079, PV157)
  3. Statistics. Descriptive statistics (location and variability characteristics, order statistics, association statistics, related graphs). Discrete and continuous random variables (NV). Random sampling. Parametric probability models (distributions) of NVs. Central limit theorem. Likelihood principle, point and interval estimation. Statistical inference - hypothesis testing, significance level, reliability coefficient. Hypothesis testing on one sample, two samples, more than two samples (including one-sample, two-sample and paired t-tests, ANOVA and post-hoc tests), goodness-of-fit tests. Linear regression model. (MV013)
  4. Database. Management of relational database systems, terminology, principles. Data representation and storage. Query evaluation and optimization, statistics, table partitioning. Indexing and hashing, indexing for multiple attributes. Transactional processing, recovery. Security, access rights, SQL attacks. (PA152)
  5. Management Fundamentals. Fundamentals of management analysis (PESTE, SWOT, 6C). Interest groups and their interests. Management by competence, vitality theory. Strategic orientation of the company and planning. People evaluation and motivation. Strategic management, synergy and its role in management and leadership. Risk management and its principles. (PA182, PV215, PV237, PV271)
  6. Project management. International standards of project management. Project, programme, portfolio (PPP). IT project life cycle. Process groups in a project. Project planning. Project costing. Gantt charts and project milestones. Network analysis, Critical Path Method (CPM), Program Evaluation and Review Technique (PERT). Project quality assurance, testing, review, measurement and standards. (PA179)
  7. IT Service Management. Principles, processes, outsourcing. Information Technology Infrastructure Library (ITIL), basic concepts, service infrastructure management. (PV203, PV214)
  8. Communication. Communication theory. Moderation techniques. Levels of learning, knowledge, skills, attitudes. Active listening. Person-centred communication. Groups and teams, group process, team building, independent teams. Conflict management and transformation. (PV206)

Specialization - Cybersecurity Management

  1. Coding Theory. Fundamentals of coding theory, Shannon's theorem. Entropy. Generation of truly- and pseudo-random sequences. Cryptographic protocols, key establishment methods, zero-knowledge protocols. Quantum cryptography. (IV054, PV079)
  2. Symmetric and asymmetric ciphers. Principles of symmetric block cipher algorithms (Feistel ciphers, DES, AES) and asymmetric algorithms (RSA, Diffie-Hellman, DSA/ElGamal). Factorization and prime number testing. Principles of construction of hash functions. Cryptosystems based on elliptic curves. (PV079)
  3. Applications of encryption. Applications of symmetric block cipher algorithms - integrity and confidentiality, modes of operation. Application of other symmetric algorithms. Application of hash functions, MAC. Hybrid cryptosystems. (PV079)
  4. Attacks on cryptographic systems and protocols. Use of hardware to protect sensitive/cryptographic data and its operations. Smartcards and their role as a security mechanism. (PV204, PV079, PA197)
  5. Cybersecurity management. Computer Security Incident Response Team (CSIRT), its roles and services. Incident handling. Alerts and warnings. Penetration testing. Honeypots. Network security monitoring - packet and flow analysis. Digital forensic investigation. (PV210, PA211, PV177)
  6. ICT law, cybercrime and cyber security. Liability of Internet Service Providers (e-commerce directive), Internet jurisdiction, software copyright protection, software patent protection, software licensing (including open source), data protection, privacy, cyber security law (NIS Directive, Cyber Security Act), cyber crime (Budapest Treaty). (PrF:BVV03K, PrF:BVV14K, PrF:BI301K)

Specialization - Software Systems Development Management

  1. System verification and assurance. Principles, advantages, disadvantages and limitations of methods for testing systems without code knowledge and other techniques for formal verification of computer systems such as symbolic execution, model checking for LTL and CTL formulas, bounded model checking, transition system abstraction and the CEGAR method. (IA169)
  2. Distributed Systems. Basic concepts, principles. Difference between centralized and distributed system architecture. Horizontal/vertical scalability. Data sharding, high-availability. Examples of existing technologies and their use. Web services, example implementation (SOAP/WSDL/REST). (PA053)
  3. Computer networks. Concepts, principles, architectures. OSI model, Internet protocols, static and dynamic routing. Basic computer network services, network security. Security in system sessions (SSL, SSH, IPSec, WEP, WPA, Kerberos) and in the Internet environment. Security in SOA, web services security. (PA151, PA159, PA191, PA197)
  4. Object-oriented methods of system design. Design patterns. Software architectures. Component interfaces, service signatures and constraints, OCL. Component systems and models, quality of service (QoS). Object-oriented software development methods, RUP. (PA103)
  5. Enterprise applications. Basic concepts of software architectures. Layered architecture of modern information systems, model-view-controller. Service-oriented architecture (SOA). Deployment. Basic concepts of cloud computing. Object-relational mapping (ORM) in enterprise applications. Design patterns in large-scale enterprise systems, such as Data Transfer Object (DTO), Data Access Object (DAO), Facade, Dependency Injection (DI).
  6. Applied Information Systems. Information systems and their role in management, their objectives, analysis and design issues. IS issues in manufacturing, government, healthcare. Geographic IS. (PV028)

Specialization - Service Development Management

  1. Basics of service systems. Logic of dominant service, differences from logic of dominant product. Service system, its elements and relationships. Collaboration and dual service system. Value proposition and value co-creation, mention-use principle. Basic approaches to information, information gap and moral hazard, solutions, information asymmetry. Application of service science to the information gap problem. (PA194)
  2. Modeling of information systems. Modeling the structure and behavior of systems. Decomposition and balancing of information systems models. Modeling the time dimension. Mind maps and work-breakdown structures (WBS). UML, use case diagrams, class diagrams and interaction diagrams. Process models. State models. Data models and data normalization. (PA116)
  3. IT as a Service. The concept of IT as a service. IT service delivery and its models. Four-diamond model. Business model frameworks, Canvas, Lean Canvas, their differences. Service delivery, differences in general and IT service delivery. (PA181)
  4. Business Process Management. Business Process Modeling, Business Process Modeling Notation (BPMN-standard). Business Process Management System (BPMS), business rules and human tasks in business processes. Relationship between business process management and service-oriented architecture. (PV207)
  5. Computer networks. Concepts, principles, architectures. OSI model, Internet protocols, static and dynamic routing. Basic computer network services, network security. (PA151, PA159, PA191)
  6. Basic economics. Financial background of service provision, financial management, profitability. Basic key ratios, return on investment, return on equity (ROE), return on assets (ROA), return on sales (ROS). Financial management in information systems. Reasons for the need of IS for management, their objectives, problems of analysis and design. Public sector functions, eGovernment, principles of taxation. (PV241, PV118, PV028, PV045, PV242)
  7. Marketing of services. Fundamentals of marketing, understanding services, markets, products and customers. Collaboration with customers. Win-win strategies. Marketing mix, types and their differences. Relationship marketing. Marketing research, quantitative and qualitative methods. (PV240, PV216)