Reasonable Security by Effective Risk Management Practices: From Theory to Practice

Détails

ID Serval
serval:BIB_77053BE3F036
Type
Actes de conférence (partie): contribution originale à la littérature scientifique, publiée à l'occasion de conférences scientifiques, dans un ouvrage de compte-rendu (proceedings), ou dans l'édition spéciale d'un journal reconnu (conference proceedings).
Collection
Publications
Institution
Titre
Reasonable Security by Effective Risk Management Practices: From Theory to Practice
Titre de la conférence
12th International Conference on Network-Based Information Systems, 2009. NBIS '09.
Auteur(s)
Ghernaouti-Hélie S., Simms D., Tashi I.
Editeur
IEEE
Adresse
Indianapolis - Indianapolis, USA
ISBN
978-1-4244-4746-6
Statut éditorial
Publié
Date de publication
08/2009
Peer-reviewed
Oui
Pages
226-233
Langue
anglais
Résumé
In this period of grave economic uncertainty, organizations have to manage increasingly complicated situations in an environment that is subject to massive and rapid evolution. A solely intuitive approach to risk management is no longer sufficient when considering the need to optimize investments in relation to security. It is necessary to find the often difficult balance between the cost of risks and their mitigation so as to ensure that organizations can realize their objectives in a reasonable and durable manner.
The aim of this paper is to demonstrate the strong need for information system owners and managers to rely upon an effective risk analysis methodology for decision making related to efficient security measures in order to enhance business performance.
We present a methodological approach. A case study and description of real-life experiences are presented in order to illustrate the applicability of this approach.
Mots-clé
Uncertainty, Risk and Security Management, Information Systems and Security Governance, Information systems conformance issues, Sustainable development, Responsibility, Complexity Management, Multidisciplinary approach, Real life case study
Web of science
Création de la notice
08/02/2011 16:51
Dernière modification de la notice
20/08/2019 14:34
Données d'usage