Information Security Risk Assessment Using Situational Awareness Frameworks and Application Tools
نویسندگان
چکیده
This paper describes the development of situational awareness models and applications to assess cybersecurity risks based on Annex ISO 27001:2013. The risk assessment method used is direct testing method, namely audit, exercise penetration testing. this study classified into three levels, high, medium low. A high-risk value an unacceptable value. Meanwhile, low values can be categorized as acceptable values. results a network security case with performance index indicators percentage compliance 27001:2013 annex controls level findings test methods showed that audit was 38.29% moderate level. While tabletop are 75% levels. On other hand, 16.66%, Test or corrective actions taken through application. Finally, have been verified prove there increase in cyber resilience security.
منابع مشابه
Security and Business Situational Awareness
“Security needs to be aligned with business”. Business situational awareness is the ability to continually monitor ongoing actions and events related to business operations and estimate the immediate and close-future impact of the new information. This ability is crucial for business continuity and should encompass all associated aspects. Considering the growing dependability of businesses on I...
متن کاملBuilding Maritime Security Situational Awareness
Maritime domain security relies on the ability to build a comprehensive awareness of maritime activity. Although it is still in the developmental stages situational awareness is the prerequisite of maritime domain security. Today technological developments such as space‐based systems, over‐the‐horizon radar, and near‐ shore and harbour acoustics can be incorporated into...
متن کاملA cross-cultural investigation of situational information security awareness programs
Purpose – The aim of this research is to make users aware of the importance surrounding the issue of security and security awareness while at the same time making educators as well as other individuals aware of the differing effects of cultural dimensions into the learning process. Design/methodology/approach – An inter-cultural study was conducted to investigate if users from the USA and Taiwa...
متن کاملFrameworks and tools for risk assessment of manufactured nanomaterials.
Commercialization of nanotechnologies entails a regulatory requirement for understanding their environmental, health and safety (EHS) risks. Today we face challenges to assess these risks, which emerge from uncertainties around the interactions of manufactured nanomaterials (MNs) with humans and the environment. In order to reduce these uncertainties, it is necessary to generate sound scientifi...
متن کاملnetwork situational awareness and quantitative threat assessment based on multi sensor information fusion
threat assessment in the computer networks of organizations can reduce damage caused by attacks and unexpected events. data fusion models such as the jdl model provide efficient and adequate sensors to gather the right information at the right time from the right components. this information then is refined and normalized to provide situational awareness and assess events that may be intended a...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Risks
سال: 2022
ISSN: ['2227-9091']
DOI: https://doi.org/10.3390/risks10080165