engleski

Risk Assessment Model of Information System Protection As a Function of Human Resources Measures

In this thesis human resources information system (IS) risk assessment model has been presented through planning, implementation and supervision by human resources. The security risk analysis IS is mainly been done through subjective assessment of IS resources value, certain threats probability and possible damage if the threats occur. The goal of this research is objective and quantitative risk demonstration, in taking care of the protective measures that should ensure managing, and lowering or elimination of previously calculated security risks IS. In this research following scientific methods were used: analysis (in determination of protective measures), general system theory ( in systematic research approach), mathematics (in research variables quantification) and synthesis (in integration of parts of the system that were determined by analysis and mathematic methods). The main results of the thesis are determination of exact risk values for all parts of protective systems. The most important part of the research are objective risk assessment values in IS protection, which are in direct and specific supervision and responsibility of human resources.

Information system, human resources, subsystem, risk, protective measures system

UDC 007:005.95/.96:004 ; 005.334