Simple and Multi Risk Assessment Framework for Information Security using Process Flow Diagram
نویسندگان
چکیده
Organizations need a simple risk assessment framework to understand them. In contrast, analysis requires some mathematical tools be able estimate based on understanding and availability. practice, the assets, for which will calculated, are dependent one another, resulting in inevitable complexity. We propose that addresses these three situations with process flow diagram. Simplicity is obtained from conceptual model data diagrams widely used information system design. This can translated into several models at once: graph, Boolean algebra, Boole’s set theory. The complexity of asset dependencies overcome when translating model. Solutions were shown case studies systems COVID-19 personal protective equipment Indonesia, require construction system, support multiple models, take account dependencies. multi-risk enables implementation proofing by testing each other.
منابع مشابه
A process framework for information security management
Securing sensitive organizational data has become increasingly vital to organizations. An Information Security Management System (ISMS) is a systematic approach for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an organization's information security. Key elements of the operation of an ISMS are ISMS processes. However, and in spite of its importance, an...
متن کاملInformation Security Risk Assessment Based on Analytic Hierarchy Process
Abstract Information security risk assessment was an important component of information systems security engineering and the selection of assessment method had a direct impact on the final results of the assessment. But there were too many elements in the process of information security risk assessment. How to find the optimal elements from many elements to simplify the calculation of risk valu...
متن کاملProposed Framework for Security Risk Assessment
Security risk assessment framework provides comprehensive structure for security risk analysis that would help uncover systems’ threats and vulnerabilities. While security risk assessment is an important step in the security risk management process, this paper will focus only on the security risk assessment framework. Viewing issues that exist in a current framework, we have developed a new fra...
متن کاملThe Simple Information Security Audit Process: SISAP
The SISAP (Simple Information Security Audit Process) is a dynamic security audit methodology fully compliant with the ISO 17799 and BS 7799.2, and conformant with the ISO 14508 in terms of its functionality guidelines. The SISAP employs a simulation-based rule base generator that balances risks and business value generation capabilities using the Plan-Do-Check-Act cycle imposed in BS 7799.2. T...
متن کاملProject Risk Assessment Framework
This study presents a framework for calculating the risk of various projects, especially projects under uncertain circumstances. First, the related literature is reviewed and then the relationship between risk and projects is examined. Using a case study an approach is provided to determine the project risk in uncertain circumstances where sufficient data is not available for decision-making. I...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Saintek: Jurnal Sains dan Teknologi
سال: 2023
ISSN: ['2580-278X', '2085-8019']
DOI: https://doi.org/10.31958/js.v15i1.9249