Development of Information Security Management Assessment Model for the Financial Sector

被引：0

作者：

Oh, Eun ^{[1
]}

Kim, Tae-Sung ^{[2
]}

Cho, Tae-Hee ^{[1
]}

机构：

[1] ArchiSec Consulting, Seoul, South Korea

[2] Chungbuk Natl Univ, Chungbuk, South Korea

来源：

INFORMATION SECURITY APPLICATIONS, WISA 2016 | 2017年 / 10144卷

关键词：

Financial security; Information security management system;

D O I：

10.1007/978-3-319-56549-1_16

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This study integrates the representative information security certification systems such as ISMS, PIMS and PIPL in order to improve efficiency of information security management. It also suggests information security management assessment model for the financial sector by incorporating new control items derived from laws and regulations related to financial IT and information security into the integration model of information security certifications to reflect characteristics of financial industry. The findings have significance in that they solve problems related to duplication of previous information security certification systems and suggest the orientation of information security management system for financial industry enhancing the organizations' ability to cope with security accidents. Moreover, the suggested methodology can be used in study on systematic and specific information security management standard for each industry.

引用

页码：186 / 197

页数：12

共 50 条

[1] Study on Financial-sector Information Security Level Assessment and Improvement Anticipation Model
Park, Young-Rai
Choy, Yoon-Chul
Shon, Won-Sung
[J]. INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2014, 8 (06): : 147 - 160
[2] Enterprise risk management and information technology security in the financial sector
Kwateng, Kwame Owusu
Amanor, Christopher
Tetteh, Francis Kamewor
[J]. INFORMATION AND COMPUTER SECURITY, 2022, 30 (03) : 422 - 451
[3] Information security risk assessment model for risk management
Wawrzyniak, Dariusz
[J]. TRUST, PRIVACY, AND SECURITY IN DIGITAL BUSINESS, PROCEEDINGS, 2006, 4083 : 21 - 30
[4] Dynamic financial and monetary security risk assessment based on information service security assessment model and blockchain
Jia Li
[J]. Scientific Reports, 13
[5] Dynamic financial and monetary security risk assessment based on information service security assessment model and blockchain
Li, Jia
[J]. SCIENTIFIC REPORTS, 2023, 13 (01)
[6] AN ASSESSMENT OF THE FINANCIAL AND ECONOMIC SECURITY OF THE AGRICULTURAL SECTOR IN UKRAINE
Sirenko, N.
Lunkina, T.
Burkovskaya, A.
Mikulyak, K.
[J]. FINANCIAL AND CREDIT ACTIVITY-PROBLEMS OF THEORY AND PRACTICE, 2021, 4 (39): : 241 - 250
[7] Development of the Information Security Management System Standard for Public Sector Organisations in Estonia
Seeba, Mari
Matulevicius, Raimudas
Toom, Ilmar
[J]. 24TH INTERNATIONAL CONFERENCE ON BUSINESS INFORMATION SYSTEMS (BIS): ENTERPRISE KNOWLEDGE AND DATA SPACES, 2021, : 355 - 366
[8] Rethinking FS-ISAC: An IT Security Information Sharing Network Model for the Financial Services Sector
Liu, Charles Z.
Zafar, Humayun
Au, Yoris A.
[J]. COMMUNICATIONS OF THE ASSOCIATION FOR INFORMATION SYSTEMS, 2014, 34 : 15 - 36
[9] An information security control assessment methodology for organizations' financial information
Otero, Angel R.
[J]. INTERNATIONAL JOURNAL OF ACCOUNTING INFORMATION SYSTEMS, 2015, 18 : 26 - 45
[10] The Assessment of Cyber Security's Significance in the Financial Sector of Lithuania
Gavenaite-Sirvydiene, Julija
Miecinskiene, Algita
[J]. Journal of Cyber Security and Mobility, 2023, 12 (04): : 497 - 518

← 1 2 3 4 5 →