Developing a Risk Analysis Strategy Framework for Impact Assessment in Information Security Management Systems: A Case Study in IT Consulting Industry
نویسندگان
چکیده
Organizations must be committed to ensuring the confidentiality, availability, and integrity of information in their possession manage legal regulatory obligations maintain trusted business relationships. Information security management systems (ISMSs) support companies better deal with risks cyber-attacks. Although there are many different approaches successfully implementing an ISMS a company, most important time-consuming part establishing is risk assessment. The purpose this paper was develop assessment framework that company followed technology sector conduct process comply International Organization for Standardization (ISO) 27001. findings analyze conditions force organizations invest protecting benefits they can derive from process. In particular, delves into multinational IT consulting services undertakes implements large installation customization projects. It explains necessary configurations so its functions acceptable line standards. Finally, it presents difficulties challenges encountered.
منابع مشابه
Designing a Framework for Workplace Bullying Management in Banking Industry
Purpose: Workplace bullying in banks is a deviant behavior which has imposed huge physical and intangible costs on them; however, no model has ever been provided to manage it. This study is implemented to design a framework for workplace bullying management in the banking industry. Methodology: The present study was of qualitative nature and used the systematic approach of grounded theory. Dat...
متن کاملa framework for identifying and prioritizing factors affecting customers’ online shopping behavior in iran
the purpose of this study is identifying effective factors which make customers shop online in iran and investigating the importance of discovered factors in online customers’ decision. in the identifying phase, to discover the factors affecting online shopping behavior of customers in iran, the derived reference model summarizing antecedents of online shopping proposed by change et al. was us...
15 صفحه اولInformation security risk management for computerized health information systems in hospitals: a case study of Iran
BACKGROUND In recent years, hospitals in Iran - similar to those in other countries - have experienced growing use of computerized health information systems (CHISs), which play a significant role in the operations of hospitals. But, the major challenge of CHIS use is information security. This study attempts to evaluate CHIS information security risk management at hospitals of Iran. MATERIAL...
متن کاملA Systems Approach to Information Technology (IT) Infrastructure Design for Utility Management Automation Systems
Almost all of electric utility companies are planning to improve their management automation system, in order to meet the changing requirements of new liberalized energy market and to benefit from the innovations in information and communication technology (ICT or IT). Architectural design of the utility management automation (UMA) systems for their IT-enabling requires proper selection of ...
متن کاملTowards Knowledge Management: an Exploratory Study for Developing a KM Framework in Iran
This paper is to develop a knowledge management (KM) model in some Iranian academic research centers (ARC) based on KM critical success factors. General KM critical success factors (CSF) were identified through literature review. Then the research procedure led to the identification of KM critical success factors in Iranian ARCs including 16 different factors. It was done through first stage su...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Sustainability
سال: 2022
ISSN: ['2071-1050']
DOI: https://doi.org/10.3390/su14031269