Information Security Risk Analysis SWOT

Шевченко, Галина Володимирівна and Шевченко, Світлана Миколаївна and Жданова, Юлія Дмитрівна and Спасітєлєва, Світлана Олексіївна and Негоденко, Олена Василівна (2021) Information Security Risk Analysis SWOT Cybersecurity Providing in Information and Telecommunication Systems, 2923. pp. 309-317. ISSN 1613-0073

[thumbnail of H_Shevchenko_S_Shevchenko_Y_Zhdanova_S_Spasitelev_O_Negodenko_CEUR_2923.pdf] Text
H_Shevchenko_S_Shevchenko_Y_Zhdanova_S_Spasitelev_O_Negodenko_CEUR_2923.pdf - Published Version

Download (1MB)

Abstract

The rapid growth of digital information and its increasing importance creates the preconditions for the emergence of new information security risks: leakage, theft, loss, distortion, forgery, destruction, copying and blocking of information, and, consequently, harm to the organization. Therefore, information risks take one of the central places in the risk theory. The approach of assessment and management of information risks is now used as a systematic methodology for information protection. This paper proposes an approach to information risk analysis, namely: the introduction of SWOT-analysis tools for identification and assessment of risks in the field of small and medium-sized businesses informational security. Based on scientific sources, the main definitions of the study are analyzed: information security risk, quantitative risk assessment (qualitative and quantitative approach), SWOT-analysis technology. The content and procedure of SWOT analysis are described. Emphasis is placed on developing and identifying aspects such as internal weaknesses of the organization and external threats in order to counter threats to information security (violation of confidentiality, accessibility, and integrity), as well as the use of external opportunities for its development. The choice of this technology is most reasonable for those enterprises with a small presence of specialists in this field.

Item Type: Article
Uncontrolled Keywords: Information security (IS) risks; IS risk assessment; SWOT-analysis; assets; threats; vulnerabilities.
Subjects: Це архівна тематика Київського університету імені Бориса Грінченка > Статті у наукометричних базах > Scopus
Divisions: Це архівні підрозділи Київського університету імені Бориса Грінченка > Факультет інформаційних технологій та математики > Кафедра інформаційної та кібернетичної безпеки імені професора Володимира Бурячка
Depositing User: Ю. Д. Жданова
Date Deposited: 20 Sep 2021 06:05
Last Modified: 20 Sep 2021 06:05
URI: https://elibrary.kubg.edu.ua/id/eprint/37152

Actions (login required)

View Item View Item