Information Security Risk Assessment of Commercial Organizations

被引：1

作者：

Kupriyanov, A. O. ^{[1
]}

Babenko, A. A. ^{[1
]}

Bakhracheva, Y. S. ^{[1
]}

机构：

[1] Volgograd State Univ, Prior Technol Inst, Dept Informat Secur, 100 Prosp Universitetsky, Volgograd 400062, Russia

来源：

PHYSICS, TECHNOLOGIES AND INNOVATION (PTI-2019) | 2019年 / 2174卷

关键词：

D O I：

10.1063/1.5134280

中图分类号：

O59 [应用物理学];

学科分类号：

摘要：

The main purpose of any commercial organization is to make a profit. The reduction of expected losses can be interpreted as profit, and taking into account the cost of implemented countermeasures, this value can be considered as a return on investment in measures to protect the information system of the organization. The information security risk assessment procedure allows you to systematize information security risks, plan the scenario of their processing, correctly and effectively specify countermeasures that eliminate these risks. The article deals with the model of information security risk assessment of commercial organizations, based on two-factor risk assessment. The concept of the level of information security of commercial organizations as a visual indicator of the state of information security of the organization for its management is considered.

引用

页数：6

共 50 条

[1] The Validity of Information Security Risk Assessment Methods for Organizations
Astakhova, L. V.
[J]. SCIENTIFIC AND TECHNICAL INFORMATION PROCESSING, 2020, 47 (04) : 241 - 247
[2] The Validity of Information Security Risk Assessment Methods for Organizations
L. V. Astakhova
[J]. Scientific and Technical Information Processing, 2020, 47 : 241 - 247
[3] Risk assessment of Information Security Management System inGovernment Organizations in Iran
Fayez, Samane
Nazeri, HodaHosseinZade
BagherKiaroodi, Mohammad
[J]. PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON COMPUTER, NETWORKS AND COMMUNICATION ENGINEERING (ICCNCE 2013), 2013, 30 : 77 - 79
[4] An information security control assessment methodology for organizations' financial information
Otero, Angel R.
[J]. INTERNATIONAL JOURNAL OF ACCOUNTING INFORMATION SYSTEMS, 2015, 18 : 26 - 45
[5] From rationale to lessons learned in the cloud information security risk assessment: a study of organizations in Sweden
Faizi, Ana
Padyab, Ali
Naess, Andreas
[J]. INFORMATION AND COMPUTER SECURITY, 2022, 30 (02) : 190 - 205
[6] INFORMATION SECURITY IN ORGANIZATIONS
Cirnu, Doris
Banta, Victor
[J]. METALURGIA INTERNATIONAL, 2013, 18 (03): : 227 - 231
[7] Information Security Risk Assessment in SCM
Roy, Arup
Gupta, A. D.
Deshmukh, S. G.
[J]. 2013 IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL ENGINEERING AND ENGINEERING MANAGEMENT (IEEM 2013), 2013, : 1002 - 1006
[8] Automation of Information Security Risk Assessment
Akhmetov, Berik
Lakhno, Valerii
Chubaievskyi, Vitalyi
Kaminskyi, Serhii
Adilzhanova, Saltanat
Ydyryshbayeva, Moldir
[J]. INTERNATIONAL JOURNAL OF ELECTRONICS AND TELECOMMUNICATIONS, 2022, 68 (03) : 549 - +
[9] Value-focused assessment of information system security in organizations
Dhillon, Gurpreet
Torkzadeh, Gholamreza
[J]. INFORMATION SYSTEMS JOURNAL, 2006, 16 (03) : 293 - 314
[10] COMMERCIAL ACTIVITY OF INFORMATION ORGANIZATIONS
ERMOSHENKO, NN
[J]. NAUCHNO-TEKHNICHESKAYA INFORMATSIYA SERIYA 1-ORGANIZATSIYA I METODIKA INFORMATSIONNOI RABOTY, 1991, (09): : 14 - 18

← 1 2 3 4 5 →