Information Security Risk Assessment

Kuzminykh, Ievgeniia and Ghita, B. and Sokolov, V. Y. and Bakhshi, Taimur (2021) Information Security Risk Assessment Encyclopedia, 1 (3). pp. 602-617. ISSN 2673-8392

[thumbnail of V_Sokolov_Encyclopedia-01-00050-v2_FITU.pdf] Text

Download (1MB)


Information security risk assessment is an important part of enterprises’ management practices that helps to identify, quantify, and prioritize risks against criteria for risk acceptance and objectives relevant to the organization. Risk management refers to a process that consists of identification, management, and elimination or reduction of the likelihood of events that can negatively affect the resources of the information system to reduce security risks that potentially have the ability to affect the information system, subject to an acceptable cost of protection means that contain a risk analysis, analysis of the “cost-effectiveness” parameter, and selection, construction, and testing of the security subsystem, as well as the study of all aspects of security.

Item Type: Article
Uncontrolled Keywords: information risk management; security risk assessment; risk classification; OCTAVE; CRAMM; RiskWatch; fuzzy logic
Subjects: Це архівна тематика Київського університету імені Бориса Грінченка > Статті у журналах > Наукові (входять до інших наукометричних баз, крім перерахованих, мають ISSN, DOI, індекс цитування)
Divisions: Це архівні підрозділи Київського університету імені Бориса Грінченка > Факультет інформаційних технологій та математики > Кафедра інформаційної та кібернетичної безпеки імені професора Володимира Бурячка
Depositing User: Volodymyr Sokolov
Date Deposited: 20 Aug 2021 11:45
Last Modified: 20 Aug 2021 11:45

Actions (login required)

View Item View Item