Reasonable Security by Effective Risk Management Practices: From Theory to Practice

Details

Serval ID
serval:BIB_77053BE3F036
Type
Inproceedings: an article in a conference proceedings.
Collection
Publications
Institution
Title
Reasonable Security by Effective Risk Management Practices: From Theory to Practice
Title of the conference
12th International Conference on Network-Based Information Systems, 2009. NBIS '09.
Author(s)
Ghernaouti-Hélie S., Simms D., Tashi I.
Publisher
IEEE
Address
Indianapolis - Indianapolis, USA
ISBN
978-1-4244-4746-6
Publication state
Published
Issued date
08/2009
Peer-reviewed
Oui
Pages
226-233
Language
english
Abstract
In this period of grave economic uncertainty, organizations have to manage increasingly complicated situations in an environment that is subject to massive and rapid evolution. A solely intuitive approach to risk management is no longer sufficient when considering the need to optimize investments in relation to security. It is necessary to find the often difficult balance between the cost of risks and their mitigation so as to ensure that organizations can realize their objectives in a reasonable and durable manner.
The aim of this paper is to demonstrate the strong need for information system owners and managers to rely upon an effective risk analysis methodology for decision making related to efficient security measures in order to enhance business performance.
We present a methodological approach. A case study and description of real-life experiences are presented in order to illustrate the applicability of this approach.
Keywords
Uncertainty, Risk and Security Management, Information Systems and Security Governance, Information systems conformance issues, Sustainable development, Responsibility, Complexity Management, Multidisciplinary approach, Real life case study
Web of science
Create date
08/02/2011 16:51
Last modification date
20/08/2019 14:34
Usage data