Information Security Management is not only Risk Management

Details

Serval ID
serval:BIB_35D1DAEF62B7
Type
Inproceedings: an article in a conference proceedings.
Collection
Publications
Institution
Title
Information Security Management is not only Risk Management
Title of the conference
Proceedings of the 2009 Fourth International Conference on Internet Monitoring and Protection (ICIMP 2009)
Author(s)
Tashi I., Ghernaouti-Hélie S.
Publisher
IEEE
Address
Venice/Mestre, Italy
ISBN
978-0-7695-3612-5
Publication state
Published
Issued date
05/2009
Peer-reviewed
Oui
Pages
116-123
Language
english
Notes
Disponible sur le portail www.acm.org
Abstract
The paper considers and discusses two closely relatedconcepts and process, namely Risk Management and SecurityManagement. Practically, there is a tendency to consider RiskManagement as a plenty process capable to protect informationassets. Based on the literature and international standards, thepaper gives an overview of all the aspects and activities related toboth processes. Risk Management and Security Management areanalyzed in order to point out their particularities andsimilitudes. The paper aims to clarify both concepts focusing onan operational, organizational and conceptual point of view byexplaining which are the differences and why these two processcan not been conceived or operated separately.
Create date
08/02/2011 17:10
Last modification date
20/08/2019 13:23
Usage data