Integrated, Business-Oriented, Two-Stage Risk Analysis

被引:0
|
作者
Bialas, Andrzej [1 ]
Lisek, Krzysztof [1 ]
机构
[1] Inst Innovat & Informat Soc, Ul Wita Stwosza 7, PL-40954 Katowice, Poland
来源
JOURNAL OF INFORMATION ASSURANCE AND SECURITY | 2007年 / 2卷 / 03期
关键词
Information security management; Risk analysis;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper presents an integrated, business-oriented, two-stage risk analysis method related to the Information Security Management Systems (ISMS) concept. The current state of the work is presented, including risk analysis methods and their implementation. The concept assumes the integration of preliminary overviews as well as high- and low-level risk analyses. High-level risk analysis works with the needs of business processes and presents criticality of these processes. Low-level risk analysis works with assets and selects safeguards in a cost-effective manner. It is assumed that the presented risk analysis concept can be used in other management systems: business continuity and IT services management. The paper concludes the current state of the work and defines its further directions.
引用
收藏
页码:205 / 210
页数:6
相关论文
共 50 条
  • [41] A Business-Oriented Methodology to Evaluate the Security of Software Architecture Quantitatively
    Chen, Hao
    Zhou, Shengyang
    Chen, Chen
    Dai, Zheng
    Li, Bixin
    INTERNATIONAL JOURNAL OF SOFTWARE ENGINEERING AND KNOWLEDGE ENGINEERING, 2024, 34 (02) : 239 - 271
  • [42] Infrastructure modeling of converged networks for business-oriented metrics evaluation
    Guimares, Almir P.
    Maciel, Paulo R. M.
    PROCEEDINGS 2012 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN, AND CYBERNETICS (SMC), 2012, : 1274 - 1279
  • [43] SIM: an Innovative Business-Oriented Approach for a Distributed Access Management
    Aubert, Jocelyn
    Gateau, Benjamin
    Incoul, Christophe
    Feltus, Christophe
    2008 3RD INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGIES: FROM THEORY TO APPLICATIONS, VOLS 1-5, 2008, : 1419 - 1424
  • [44] Methanol synthesis in an integrated two-stage reactor
    Linghu, WS
    Liu, ZY
    Zhu, ZP
    Yang, JL
    Zhong, B
    CHEMICAL ENGINEERING SCIENCE, 1999, 54 (15-16) : 3671 - 3675
  • [45] A Two-Stage Integrated Approach of DNA Cryptography
    Nandal, Neha
    Panghal, Suman
    PROCEEDINGS OF INTERNATIONAL CONFERENCE ON ICT FOR SUSTAINABLE DEVELOPMENT ICT4SD 2015, VOL 2, 2016, 409 : 405 - 413
  • [46] INTEGRATED TWO-STAGE COAL LIQUEFACTION.
    Schiffer, Anna N.
    Peluso, Michael
    Chen, James M.
    Schindler, H.D.
    Energy Progress, 1982, 2 (04): : 220 - 223
  • [47] Romania's accession to the Russian Union: An analysis from a marketing and business-oriented perspective
    Veghes, Calin
    PROCEEDINGS OF THE 14TH ANNUAL CONFERENCE ON MARKETING AND BUSINESS STRATEGIES FOR CENTRAL & EASTERN EUROPE, 2006, : 316 - +
  • [48] A two-stage analysis of the influences of employee alignment on effecting business-IT alignment
    Wong, T. C.
    Ngan, Shing-Chung
    Chan, Felix T. S.
    Chong, Alain Yee-Loong
    DECISION SUPPORT SYSTEMS, 2012, 53 (03) : 490 - 498
  • [49] Business-oriented component-based software development and evolution
    Jarzabek, S
    Hitz, M
    NINTH INTERNATIONAL WORKSHOP ON DATABASE AND EXPERT SYSTEMS APPLICATIONS, PROCEEDINGS, 1998, : 784 - 788
  • [50] Business-Oriented Autonomic Load Balancing for Multitiered Web Sites
    Ewing, John A.
    Menasce, Daniel A.
    2009 IEEE INTERNATIONAL SYMPOSIUM ON MODELING, ANALYSIS & SIMULATION OF COMPUTER AND TELECOMMUNICATION SYSTEMS (MASCOTS), 2009, : 279 - 288
12345