Efficient Security Measurements and Metrics for Risk Assessment
Details
Serval ID
serval:BIB_CC23329E7FF6
Type
Inproceedings: an article in a conference proceedings.
Collection
Publications
Institution
Title
Efficient Security Measurements and Metrics for Risk Assessment
Title of the conference
The Third International Conference on Internet Monitoring and Protection (ICIMP 2008), Proceedings
Address
Bucharest, Romania
ISBN
978-0-7695-3189-2
Publication state
Published
Issued date
07/2008
Peer-reviewed
Oui
Pages
131-138
Language
english
Abstract
An efficient IT security management relies upon the ability to make a good compromise between the cost of security countermeasures to be implemented, and the reality of informational risks an organization have to face. In fact, it concerns the capacity of an IT security manager to make decisions in a dynamic and complex environment. Even a well-experienced manager needs reliable tools to optimize the decision making process. The aim of this paper is to propose some relevant metrics and measurements in order to facilitate the decision making and to improve performance and accountability in security measures and procedures.We propose an approach to obtain some meaningful and useful metrics and measurements, to assess the Information Security Preparedness Level in a continuing improvement scope.
Create date
21/02/2011 13:53
Last modification date
20/08/2019 15:46