Information Security Risk Assessment of Commercial Organizations

被引:1
|
作者
Kupriyanov, A. O. [1 ]
Babenko, A. A. [1 ]
Bakhracheva, Y. S. [1 ]
机构
[1] Volgograd State Univ, Prior Technol Inst, Dept Informat Secur, 100 Prosp Universitetsky, Volgograd 400062, Russia
来源
PHYSICS, TECHNOLOGIES AND INNOVATION (PTI-2019) | 2019年 / 2174卷
关键词
D O I
10.1063/1.5134280
中图分类号
O59 [应用物理学];
学科分类号
摘要
The main purpose of any commercial organization is to make a profit. The reduction of expected losses can be interpreted as profit, and taking into account the cost of implemented countermeasures, this value can be considered as a return on investment in measures to protect the information system of the organization. The information security risk assessment procedure allows you to systematize information security risks, plan the scenario of their processing, correctly and effectively specify countermeasures that eliminate these risks. The article deals with the model of information security risk assessment of commercial organizations, based on two-factor risk assessment. The concept of the level of information security of commercial organizations as a visual indicator of the state of information security of the organization for its management is considered.
引用
收藏
页数:6
相关论文
共 50 条
  • [21] Information security risk assessment, aggregation, and mitigation
    Lenstra, A
    Voss, T
    INFORMATION SECURITY AND PRIVACY, PROCEEDINGS, 2004, 3108 : 391 - 401
  • [22] A Study of Information Security Evaluation and Risk Assessment
    Li, Jingyi
    Chao, Shiwei
    Huo, Minxia
    2015 FIFTH INTERNATIONAL CONFERENCE ON INSTRUMENTATION AND MEASUREMENT, COMPUTER, COMMUNICATION AND CONTROL (IMCCC), 2015, : 1909 - 1912
  • [23] Risk assessment of human error in information security
    Cheng, Xiang-Yun
    Wang, Ying-Mei
    Xu, Zi-Ling
    PROCEEDINGS OF 2006 INTERNATIONAL CONFERENCE ON MACHINE LEARNING AND CYBERNETICS, VOLS 1-7, 2006, : 3573 - +
  • [24] On the role of the Facilitator in information security risk assessment
    Lizzie Coles-Kemp
    Richard E. Overill
    Journal in Computer Virology, 2007, 3 (2): : 143 - 148
  • [25] An assessment of critical success factors in information security implementation in organizations in Ghana
    Nterful, Joshua
    Adam, Ibrahim Osman
    Alhassan, Muftawu Dzang
    Abdul-Salam, Abdallah
    Umar, Abubakar Gbambegu
    INFORMATION AND COMPUTER SECURITY, 2024,
  • [26] A framework and tool for the assessment of information security risk, the reduction of information security cost and the sustainability of information security culture
    Govender S.G.
    Kritzinger E.
    Loock M.
    Personal and Ubiquitous Computing, 2021, 25 (05) : 927 - 940
  • [27] Collective information structuremodel for information security risk assessment (ISRA)
    University Tun Hussein Onn Malaysia , Johor, Malaysia
    不详
    不详
    J. Syst. Inf. Technol., 2 (193-219):
  • [28] Overview of Enterprise Information Needs in Information Security Risk Assessment
    Korman, Matus
    Ekstedt, Mathias
    Sommestad, Teodor
    Hallberg, Jonas
    Bengtsson, Johan
    PROCEEDINGS OF THE 2014 IEEE 18TH INTERNATIONAL ENTERPRISE DISTRIBUTED OBJECT COMPUTING CONFERENCE (EDOC 2014), 2014, : 42 - 51
  • [29] Risk Assessment of Power Information Risk Security Based on Risk Matrix
    Wang Xu
    Chen Tao
    Wang Yujie
    Guo Qinrui
    Teng Yangxin
    PROCEEDINGS OF 2018 IEEE 3RD ADVANCED INFORMATION TECHNOLOGY, ELECTRONIC AND AUTOMATION CONTROL CONFERENCE (IAEAC 2018), 2018, : 1494 - 1498
  • [30] Strategy for Ensuring Economic Security of Commercial Organizations
    Zaporozhtseva, L. A.
    Sabetova, T., V
    Shevtsova, N. M.
    PROCEEDINGS OF THE INTERNATIONAL SCIENTIFIC CONFERENCE FAR EAST CON (ISCFEC 2018), 2018, 47 : 907 - 912
12345