Naslov
Multi-criteria model for evaluation of information security risk assessment methods and tools

Autori
Sajko, Mario ; Hadjina, Nikola ; Pešut, Darija

Vrsta, podvrsta i kategorija rada
Radovi u zbornicima skupova, cjeloviti rad (in extenso), znanstveni

Izvornik
Proceedings of the 33rd International Convention (MIPRO 2000) / Biljanović, Petar - Rijeka : Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO, 2010, 1215-1220

ISBN
978-1-4244-7763-0

Skup
International Convention MIPRO (33 ; 2010)

Mjesto i datum
Opatija, Hrvatska, 24.05.2010. - 28.05.2010

Vrsta sudjelovanja
Predavanje

Vrsta recenzije
Međunarodna recenzija

Ključne riječi
Costs ; Decision making ; Humans ; Information security ; Information systems ; NIST ; Organizational aspects ; Protection ; Risk analysis ; Risk management

Sažetak
Methods and tools for supporting the process of information security risk assessment are determined through several attributes. These attributes make a particular method and tool more or less suitable for solving risk assessment problems in companies. During the process of selecting these methods, companies have limitations such as financing, human resources, knowledge, time, etc. These limitations determine the approach to solving the problem of risk assessment. In respect to these limitations on one side and the attributes of risk assessment methods/tools on the other, we can establish a model for assisting the selection of a suitable method/tool. The experience gained in some Croatian companies when applying this model for the selection of their appropriate risk assessment support is also presented in this paper.

Izvorni jezik
Engleski

Znanstvena područja
Informacijske i komunikacijske znanosti

POVEZANOST RADA