Integrated, Business-Oriented, Two-Stage Risk Analysis

被引:0
|
作者
Bialas, Andrzej [1 ]
Lisek, Krzysztof [1 ]
机构
[1] Inst Innovat & Informat Soc, Ul Wita Stwosza 7, PL-40954 Katowice, Poland
来源
JOURNAL OF INFORMATION ASSURANCE AND SECURITY | 2007年 / 2卷 / 03期
关键词
Information security management; Risk analysis;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper presents an integrated, business-oriented, two-stage risk analysis method related to the Information Security Management Systems (ISMS) concept. The current state of the work is presented, including risk analysis methods and their implementation. The concept assumes the integration of preliminary overviews as well as high- and low-level risk analyses. High-level risk analysis works with the needs of business processes and presents criticality of these processes. Low-level risk analysis works with assets and selects safeguards in a cost-effective manner. It is assumed that the presented risk analysis concept can be used in other management systems: business continuity and IT services management. The paper concludes the current state of the work and defines its further directions.
引用
收藏
页码:205 / 210
页数:6
相关论文
共 50 条
  • [11] ANALYSIS OF CAX-INTERDEPENDENCIES FOR AN EFFICIENT BUSINESS-ORIENTED TRAINING
    Troll, Alexander
    Zapf, Jochen
    Rieg, Frank
    ICED 09 - THE 17TH INTERNATIONAL CONFERENCE ON ENGINEERING DESIGN, VOL 10: DESIGN EDUCATION AND LIFELONG LEARNING, 2009, : 183 - +
  • [12] A Framework for Business-Oriented Security Audit
    Liu, Lianzhong
    Jiang, Wenli
    Huang, Qiang
    2008 6TH IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL INFORMATICS, VOLS 1-3, 2008, : 120 - 125
  • [13] HOME SCHOOL LINKS - FAMILY-ORIENTED OR BUSINESS-ORIENTED
    BULL, T
    EDUCATIONAL REVIEW, 1989, 41 (02) : 113 - 119
  • [14] Business-oriented prioritization: A novel graphical technique
    Pascual, R.
    Del Castillo, G.
    Louit, D.
    Knights, P.
    RELIABILITY ENGINEERING & SYSTEM SAFETY, 2009, 94 (08) : 1308 - 1313
  • [15] COBOL script: A business-oriented scripting language
    Imajo, T
    Miyake, T
    Sato, S
    Ito, T
    Yokotsuka, D
    Tsujihata, Y
    Uemura, S
    FOURTH INTERNATIONAL ENTERPRISE DISTRIBUTED OBJECT COMPUTING CONFERENCE - PROCEEDINGS, 2000, : 231 - 240
  • [16] A Business-Oriented Schema for Blockchain Network Operation
    He, Sheng
    Xing, Chunxiao
    Zhang, Liang-Jie
    BLOCKCHAIN - ICBC 2018, 2018, 10974 : 277 - 284
  • [17] Business-oriented Enterprise Cloud Services Framework
    Jiang, Zheyuan
    Shang, Guangan
    2013 3RD INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY (ICCSNT), 2013, : 284 - 291
  • [18] A business-oriented approach to the product life cycle
    Molcho, G.
    Shpitalni, M.
    INNOVATION IN LIFE CYCLE ENGINEERING AND SUSTAINABLE DEVELOPMENT, 2006, : 17 - +
  • [19] Business-oriented service modeling: A case study
    Han, Yanbo
    Wang, Jing
    Zhang, Peng
    SIMULATION MODELLING PRACTICE AND THEORY, 2009, 17 (08) : 1413 - 1429
  • [20] A business-oriented Grid workflow management system
    Clementi, Luca
    Cacciari, Claudio
    Melato, Maurizio
    Menday, Roger
    Hagemeier, Bjoern
    EURO-PAR 2007 WORKSHOPS: PARALLEL PROCESSING, 2008, 4854 : 131 - +
12345