Please use this identifier to cite or link to this item:
http://hdl.handle.net/1942/8087
Title: | ICT security management and risk management | Authors: | SCHREURS, Jeanne MOREAU, Rachel |
Issue Date: | 2008 | Source: | Carvalho Brito, A. & Feliz-Teixeira, M. (Ed.) Proceedings of the 15th European Concurrent Engineering Conference.. p. 63-68. | Abstract: | It’s critical to know what are the critical resources and processes of the company and their weaknesses. Security has become a management problem. A security audit can offer a handy solution. We have developed a method and a system. The system is called BEVA. BEVA includes a security audit measuring the security situation of the organisation in 38 security factors. Based onthis audit, it delivers an overall security score and the one for each security factor. It also supports management in detecting the critical security factors in the company. The ICT security budget is not unlimited. As a result not all needed security technologies can be implemented to improve all critical SF’s. To create a priority list of the corresponding critical threats we need to refer to organisational risks. We calculate the company specific risk scores and by the way we identify the most critical threats and by the way the most effective security technologies that must be implemented | Keywords: | ICT security, risk management, audit checklist | Document URI: | http://hdl.handle.net/1942/8087 | ISBN: | 978-9077381-39-7 | ISI #: | 000255590500010 | Category: | C1 | Type: | Proceedings Paper | Validations: | ecoom 2009 |
Appears in Collections: | Research publications |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
ECEC08.pdf | Peer-reviewed author version | 808.86 kB | Adobe PDF | View/Open |
Page view(s)
12
checked on Sep 6, 2022
Download(s)
6
checked on Sep 6, 2022
Google ScholarTM
Check
Altmetric
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.