Παρακαλώ χρησιμοποιήστε αυτό το αναγνωριστικό για να παραπέμψετε ή να δημιουργήσετε σύνδεσμο προς αυτό το τεκμήριο:
https://ruomo.lib.uom.gr/handle/7000/1733
Τίτλος: | Developing a Risk Analysis Strategy Framework for Impact Assessment in Information Security Management Systems: A Case Study in IT Consulting Industry |
Συγγραφείς: | Kitsios, Fotis Chatzidimitriou, Elpiniki Kamariotou, Maria |
Τύπος: | Article |
Θέματα: | FRASCATI::Social sciences FRASCATI::Engineering and technology |
Λέξεις-Κλειδιά: | information security management system (ISMS) ISO 27001 software consulting company risk analysis impact assessment |
Ημερομηνία Έκδοσης: | 24-Ιαν-2022 |
Πηγή: | Sustainability |
Τόμος: | 14 |
Τεύχος: | 3 |
Πρώτη Σελίδα: | 1269 |
Επιτομή: | Organizations must be committed to ensuring the confidentiality, availability, and integrity of the information in their possession to manage legal and regulatory obligations and to maintain trusted business relationships. Information security management systems (ISMSs) support companies to better deal with information security risks and cyber-attacks. Although there are many different approaches to successfully implementing an ISMS in a company, the most important and time-consuming part of establishing an ISMS is a risk assessment. The purpose of this paper was to develop a risk assessment framework that a company followed in the information technology sector to conduct the risk assessment process to comply with International Organization for Standardization (ISO) 27001. The findings analyze the conditions that force organizations to invest in protecting information and the benefits they can derive from this process. In particular, the paper delves into a multinational IT consulting services company that undertakes and implements large business support installation and customization projects. It explains the risk assessment process and the management of the necessary configurations so that its functions are acceptable and in line with information security standards. Finally, it presents the difficulties and challenges encountered. |
URI: | https://doi.org/10.3390/su14031269 https://ruomo.lib.uom.gr/handle/7000/1733 |
ISSN: | 2071-1050 |
Αλλοι Προσδιοριστές: | 10.3390/su14031269 |
Εμφανίζεται στις Συλλογές: | Τμήμα Εφαρμοσμένης Πληροφορικής |
Αρχεία σε αυτό το Τεκμήριο:
Αρχείο | Περιγραφή | Μέγεθος | Μορφότυπος | |
---|---|---|---|---|
Developing a Risk Analysis Strategy Framework for Impact Assessment in Information Security Management Systems.pdf | 590,89 kB | Adobe PDF | Προβολή/Ανοιγμα |
Αυτό το τεκμήριο προστατεύεται από Αδεια Creative Commons