• SPbSPU
    Electronic Library

Login
Search manual

Details

Шияпова, Асия Альтафовна. Professional foreign language: information security in law enforcement agencies: Study guide = Профессиональный иностранный язык : информационная безопасность в правоохранительной сфере: учебное пособие / А.А. Шияпова; Уфимский университет науки и технологий. — Уфа: Уфимский университет, 2025. — Электрон. версия печ. публикации. — Доступ возможен через Электронную библиотеку УУНИТ. — <URL:https://elib.bashedu.ru/dl/local/ShiyapovaAA_Professional foreign language_up_2025.pdf>. — Текст: электронный

Record create date

12/29/2025

Subject

иностранный язык; английский язык; лексика; информационная безопасность

Collections

Учебные и учебно-методические издания; Общая коллекция

Allowed Actions

Action 'Read' will be available if you login or access site from another network

Action 'Download' will be available if you login or access site from another network

Group Anonymous
Network Internet
Network User group Action
Library BashGU Local Network Authenticated users
Read Download
Library BashGU Local Network All
Read Download
Internet Authenticated users
Read Download
Internet All
  • Ministry of Science and Higher Education of the Russian Federation
  • Federal State Budgetary Educational Institution of Higher Education
  • “Ufa University of Science and Technology”
  • Федеральное государственное бюджетное образовательное учреждение высшего образования
  • «Уфимский университет науки и технологий»
    • UNIT 2
    • 2. Read and translate the text. Choose the proper heading for every paragraph from the list below the text. One heading is the odd one
    • Text 1.
    • LAW ENFORCEMENT TECHNOLOGY
    • These threats typically fall into three categories:
    • Malicious insiders – individuals who intentionally steal data, disrupt systems, or compromise security for personal gain, revenge, or ideological reasons.
    • Negligent insiders – employees who unintentionally cause security breaches due to carelessness, lack of training, or failure to follow security protocols.
    • Compromised insiders – individuals whose accounts have been hacked or manipulated by external attackers to gain unauthorized access to sensitive information.
    • The most common threats are:
    • – violation of regulations on data collection, storage and transmission;
    • – software failures;
    • – errors in maintaining information databases and data collection;
    • – improper data handling;
    • – accidental transfer of confidential data to third parties;
    • – deliberate theft of data by employees of government agencies.
    • Insider threats are particularly a great concern for law enforcement agencies, as they often deal with highly confidential investigations, sensitive personal information, and classified security measures. While external threats are more common, inside...
    • To effectively combat internal threats, it is important to periodically assess the risks of data leakage. Regular inspection of the data protection system of law enforcement agencies helps to detect weaknesses and grey areas in data security and focu...
    • Vocabulary
    • 4. Answer the questions
    • 1. What is an insider threat in simple terms?
    • 2. What is the difference between accidental and intentional actions?
    • 3. Whаt is the mаin mоtivаtion bеhind mаliciоus insidеr thrеаts?
    • 4. How do negligent insiders cause problems for information security? Can you give some examples?
    • 5. Do you think it's the fault of a compromised insider that criminals gained access to his account?
    • 6. Which of the three types of insiders do you think is the most dangerous?
    • 8. What are the ways to combat insider threats?
    • 5. Fill in the gaps
    • 1. Internal risks are of great danger because they can _________
    • a) gain
    • b) access
    • c) compromise
    • 2. Negligent insiders have no _________ intentions towards the company; however, their negligent acts create chaos.
    • a) ill
    • b) uncareful
    • c) sustained
    • 3. Often, compromised insiders are the result of _________ insider behavior.
    • a) negligent
    • a) malicious
    • b) compromised
    • c) negligent
    • 6. The insider threat carries the most risk when employees _________ their privileged access for personal gain.
    • a) show off
    • b) forget
    • c) misuse
    • 7. What all insiders have in common is _________
    • a) impure intentions
    • b) legitimate access
    • c) lack of training
    • 8. Many insider threats arise from _________ rather than _________
    • a) negligence
    • b) malice
    • c) outside
    • 6. Find in the text synonyms to the highlighted word combinations
    • 1) The most vulnerable factor in information security is an employee of the enterprise who has access to secret information.
    • 2) The law enforcement officers suspect that the information was altered on purpose.
    • 3) A person who belongs to an organization and has special knowledge about it can use the knowledge to the detriment of the organization.
    • 4) Employees’ shortage of experience or skills can result in different problems for the organization.
    • 5) A set of data about a user in a computer system, necessary for recognizing (authenticating) him should be protected properly.
    • 6) A legitimate user whose credentials have been stolen by outside threat actors is one of the most frequent targets of cybercriminals.
    • 7) Some employees prioritize personal benefit and thus can jeopardize security.
    • 7. Read the list of possible insider actions, then fill in the table
    • – mistyping an email address;
    • – exposing sensitive data out of revenge;
    • – accidentally clicking on a hyperlink, opening an attachment in a phishing email;
    • – perpetrating violence;
    • – improperly disposing of sensitive documents;
    • – causing leaking sensitive information;
    • – being tricked by a social engineering attack, exposing credentials and granting attackers access;
    • – changing data or inserting malware;
    • – taking deliberate actions aimed at harming an organization’s equipment;
    • – misplacing or losing a storage device with sensitive information;
    • – stealing proprietary data in the false hope of advancing their careers;
    • – ignoring messages to install new updates and security patches;
    • – unknowingly facilitating cyberattacks or unauthorized access through legitimate channels;
    • 12. Listen to the audio and fill in the gaps
    • Examples of Insider Threats
    • Yahоо
    • In May ________, Yahоо was hit by an insider thrеаt ________ . Qian Sang, a resеаrch scientist at the company, received a ________ ________ from a competitor called The Trаde Desk. Minutes later, Sаng ________ about 570,000 раges of Yahоо’s ________...
    • It took Yahоо several weeks tо ________ that Sang had ________ company’s data, including a ________ analysis of The Trade Desk. Yahoo sent Sang a cеаse-and-dеsist letter and brоught thrее ________ against him, including intellectual prорerty data ____...
    • Microsoft
    • In 2022, Microsoft exреriencеd a ________ ________ duе to employee ________. Cybеr security firm Spidеrsilk discovered the leak – sеveral Microsoft ________ еxposеd their ________ ________ to the comраny’s GitHub infrastructurе. This information coul...
    • Microsoft refused to divulgе which systems thesе crеdеntials рrotected. An internаl ________ dеtеrmined no one аttempted to аccess the ________ ________, and the compаny took асtion to рrevent this from оссurring again. Howеvеr, if this mistakе еxposе...
    • 13. Anagrams. Put the letters in the correct order to get the terms discussed in this unit. Make up sentences with these words
    • NENTLIGEG
    • GARDEN
    • SDENEFE
    • CRUSIETY
    • TERHAT
    • ICTINDEN
    • SNIDIER
    • MECROSOMIP
    • 14. Watch the video What is an insider threat in Syber Security. Write a short summary.
    • UNIT 7
    • Reading
    • 2. Read and translate the text. Below is a list of technologies used for data protection. Find a proper title to each technology description
    • Text 1.
    • INFORMATION SECURITY MEASURES
    • IN LAW ENFORCEMENT
    • 1. ____________________ All data transmitted over networks or stored on devices is encrypted using modern cryptographic algorithms.
    • 2. ____________________ Law enforcement agencies apply systems of access control to information systems, which provide different access levels for employees, depending on their job responsibilities and clearance.
    • 3. ____________________ Backups are crucial, but they can also be a source of leaks. That’s why, before creating backups of confidential data, you should place them in a crypto container.
    • 4. ____________________ Using passwords and biometric identification ensures restricted access to information related to operational, investigative, financial, personal and other types of data stored by law enforcement agencies.
    • 5. ____________________ Machine learning and behavioral analysis are used to detect and respond to threats in real time. These technologies can identify anomalies and potential security breaches, providing proactive protection against emerging threats.
    • 6. ____________________ These technologies monitor and control the transfer of data across networks, devices and applications. They prevent unauthorized sharing or leakage of sensitive information, ensuring that it remains within secure boundaries.
    • 7. ____________________ enables law enforcement agencies to manage and secure mobile devices used by officers. It can also remotely lock or wipe devices if they are lost or stolen. (1850)
    • Vocabulary
    • 3. Answer the questions
    • 1. What are the two general threats to confidential information held by law enforcement?
    • 2. What is the primary purpose of the information security measures described in the protocol?
    • 3. How do access control systems determine the level of information an employee can gain?
    • 4. What precautions should be taken when using backup storage to prevent data leakage?
    • 5. What methods are used in multi-factor authentication to restrict access to confidential data?
    • 6. How do advanced threat protection systems use machine learning to enhance security?
    • 7. What actions can be taken remotely through mobile device management if an officer's device is lost or stolen?
    • 4. Define if the statements are true, false or there is no information in the text. Correct the false statements
    • 1. All data transmitted over networks is encrypted using biometric identification.
    • 2. Accidental disclosure of information by insiders is considered one of the most common risks to information security.
    • 3. Confidentiality protection includes surveillance cameras, security systems, locks, safes.
    • 4. Regular training of law enforcement officers on information security issues is important.
    • 5. Data loss prevention technologies can identify anomalies and potential security breaches.
    • 6. The mobile devices used by law enforcement agencies can be remotely blocked in case of loss or theft.
    • 7. Creating backups can have both positive and negative consequences.
    • 8. Physical protection of servers and equipment is crucial to protect against unauthorized access to physical media.
    • 5. Match the parts of the sentences
    • 6. Complete the sentences using the information from the text
    • 1. Individuals outside the law enforcement organization can …
    • 2. Employees, according to their job responsibilities and clearance may have …
    • 3. Cryptographic algorithms are used …
    • 4. Restricted access to information stored by law enforcement agencies is provided by …
    • 5. Potential security breaches can be identified …
    • 6. The transfer of sensitive data across networks is controlled …
    • 7. Read text 1 once more and fill in the graph
    • INFORMATION SECURITY MEASURES
    • What is used?
    • 8. Read and translate the text
    • Text 2.
    • SECURITY POLICY FOR CRIMINAL JUSTICE INFORMATION
    • In today’s digital age, law enforcement agencies are custodians of highly sensitive information. From Personal Identifying Information (PII) to criminal records and other Criminal Justice Information (CJI), the data handled by law enforcement officers...
    • The Criminal Justice Information Services (CJIS) security policy sets the minimum security requirements for protecting CJI. These requirements are crucial, as they provide a framework for securing sensitive information within an environment of constan...
    • The Chain of custody (CoC) refers to the chronological documentation that records the sequence of custody, control, transfer, analysis and disposition of evidence. Maintaining an unbroken chain of custody is vital in law enforcement, as any breaches c...
    • Vocabulary
    • 9. Answer the questions using the text information
    • 1. Why is the Criminal Justice Information the prime target for criminals?
    • 2. What is the function of Criminal Justice Information Services?
    • 3. Why is it necessary to regularly update security protocols?
    • 4. What is included in the scope of responsibility of the Information Services of Criminal Justice?
    • 5. Why is it better to comply with CJIS requirements?
    • 6. What is the Chain of custody?
    • 7. How can the Chain of custody be broken?
    • 10. Match the synonyms
    • 11. Fill in the gaps
    • 1. Compliance with CJIS standards is _________
    • a) optional
    • b) permissive
    • c) obligatory
    • 2. The evolving security landscape and the innovative technologies _________ device security for law enforcement.
    • a) embrace
    • b) mitigate
    • c) mandate
    • 3. To counter these threats, the CJIS security policy establishes the _________ controls for safeguarding CJI.
    • a) baseline
    • b) exhaustive
    • с) supreme
    • 4. The policy requires regular updates to security measures to _________ new vulnerabilities.
    • a) assess
    • b) address
    • c) maintain
    • 5. All law enforcement agencies _________ adhere to the CJIS standards.
    • a) can
    • b) must
    • c) should
    • 6. _________ breaches can be the result of non-compliance to the CJIS standards.
    • a) data and device
    • b) system and access
    • c) data and system
    • 7. Maintaining a continuous chain is crucial because any _________ can undermine the entire investigation.
    • a) failure
    • b) disposition
    • c) consequence
    • 12. Choose the statement that renders the main idea of the text
    • 1. Innovative technologies now enhance device security for law enforcement.
    • 2. Strict compliance with the CJIS security policy is essential to protect sensitive criminal justice information.
    • 3. The importance of device security in law enforcement cannot be overstated.
    • 14. Watch the video “Cybersecurity and crime”. Write a short summary
    • 15. Crossword
    • Down
    • 1. Security … allows access to sensitive information
    • 3. Cryptographic transformation of information
    • 5. A string of characters which helps to verify the user’s identity
    • Across
    • 2. To modernize
    • 4. An event that affects negatively
    • 6. … is used to restore the original data in case of data loss event
    • 7. Registration of all actions with information system
    • 8. Physical … such as disks, flash drives, HDDs
    • 6. Define if the statements are true, false or there is no information in the text. Correct the false statements
  • 1 ____________________________________________________
  • Some law enforсement аgencies are alrеady using blockchаin to stаy аhead of criminаls in trаcking cаsh flows. Trаcking аctions cаn potentiаlly prevеnt mаjor finаncial scаms that continuе to oсcur onlinе. It can mаke the wоrk of investigаtors eаsier if...
  • 2 ____________________________________________________
  • Traсking and сombating crimеs is a risky businеss for mоst police offiсers and other law enforсement agencies. Thus, using this teсhnology, they can rеmain psеudоnymous and anоnymously unlеash their pоtential in mattеrs of investigatiоn, poliсy devеlo...
  • 3 ____________________________________________________
    • ЗАКЛЮЧЕНИЕ
  • Приложение
  • Additional reading
  • Text 1.
  • Seven tips for storing confidential data
  • Loss or leaks of sensitive information can be serious problems for small businesses. Here’s how to keep confidential data safe.
  • There’s no such thing as a business that doesn’t have sensitive data. Even a small retail company has documents with employees’ personal details that legally must remain confidential, for example. Bank documents would be hard to restore. Supplier and ...
  • To protect important data from loss or inappropriate disclosure, follow these seven tips.
  • 1. Enable full disk encryption on all devices
  • On devices where confidential data is stored or transmitted (i.e., most of them), be sure to enable full disk encryption (FDE). Encryption protects the data in case the device falls into the wrong hands. In Windows, the FDE tool is called BitLocker. T...
  • 2. Restrict confidential data to the office
  • Another way important data can fall into the wrong hands is through the loss (or theft) of physical media: external hard disks or flash drives. Ideally, they should never leave the office. In fact, if you must write to an external medium, you should e...
  • 3. Don’t transfer unencrypted data over the Internet
  • Sometimes you might need to send confidential data online, by e-mail or a file-sharing service. We strongly recommend avoiding it whenever possible, but if you absolutely have to send information, at least encrypt it first, in case of interception. Th...
  • 4. Delete sensitive data you no longer need
  • Even information that’s fallen out of use can still cause problems, so get rid of it. For less-sensitive information, at the very least, delete it and then empty your Recycle Bin so the data can’t be restored with a simple click. For anything even vag...
  • 5. Encrypt backups
  • Backups are crucial, but they can also be a source of leaks. That’s why, before creating backups of confidential data, you should place them in a cryptocontainer.
  • 6. Store more than one copy
  • Store your data in several places isolated from each other. For example, you might keep one copy of a file on your computer and another on an external drive or in reliable cloud storage. Again, don’t forget to encrypt the files beforehand (or follow a...
  • 7. Secure archive and cryptocontainer passwords
  • Losing the password for an archive containing important business data means losing that data. Store passwords in a purpose-built application such as our application for creating and securely storing complex passwords. In addition to its password manag...
  • https://www.kaspersky.com/blog/7-tips-on-storing-sensitive-data/41177/
  • Text 2.
  • What is Cryptography
    • Why cryptography is important?
    • How is cryptography different from crypto-currency?
    • Cryptography in law enforcement
    • Text 4.
    • Cryptography in crime
    • Keeping information safe:
...