Information Security Risk Assessment

Kuzminykh, Ievgeniia and Ghita, B. and Sokolov, V. Y. and Bakhshi, Taimur (2021) Information Security Risk Assessment Encyclopedia, 1 (3). pp. 602-617. ISSN 2673-8392

[thumbnail of V_Sokolov_Encyclopedia-01-00050-v2_FITU.pdf] Text
V_Sokolov_Encyclopedia-01-00050-v2_FITU.pdf

Download (1MB)

Abstract

Information security risk assessment is an important part of enterprises’ management practices that helps to identify, quantify, and prioritize risks against criteria for risk acceptance and objectives relevant to the organization. Risk management refers to a process that consists of identification, management, and elimination or reduction of the likelihood of events that can negatively affect the resources of the information system to reduce security risks that potentially have the ability to affect the information system, subject to an acceptable cost of protection means that contain a risk analysis, analysis of the “cost-effectiveness” parameter, and selection, construction, and testing of the security subsystem, as well as the study of all aspects of security.

Item Type: Article
Uncontrolled Keywords: information risk management; security risk assessment; risk classification; OCTAVE; CRAMM; RiskWatch; fuzzy logic
Subjects: Статті у журналах > Наукові (входять до інших наукометричних баз, крім перерахованих, мають ISSN, DOI, індекс цитування)
Divisions: Факультети > Факультет інформаційних технологій та управління > Кафедра інформаційної та кібернетичної безпеки
Depositing User: Volodymyr Sokolov
Date Deposited: 20 Aug 2021 11:45
Last Modified: 20 Aug 2021 11:45
URI: https://elibrary.kubg.edu.ua/id/eprint/36990

Actions (login required)

View Item View Item