In the light of digitalization and recent EU policy initiatives, information is an important asset that organizations all sizes from sectors should secure. However, in order to provide common requirements for implementation security management system, internationally well-accepted ISO/IEC 27001 standard has not shown expected growth rate since its publication more than a decade ago. this articl...

The continual increase of the competition on the market leads to the need of organisations to achieve and maintain compliance to standards such ISO 9001, ISO 14001, OHSAS 18001, ISO 27001, ISO 22000 a.s.o. Having an effective and efficient management system is now more important than ever. That means improving information flow and the level of knowledge in the organisation, with the same or eve...

In the new information society, risks are all over, every day, each minute. The present study presents MEHARImethodology set for risk analysis and risk management developed by CLUSIF (Club de la Securite de l'Information Francais. For many years, numerous security publications have been considering risk analysis to be the foundation of security actions and referring to it as such. This is still...

Adoption of security standards has the capability of improving the security level in an organization as well as to provide additional benefits and possibilities to the organization. However mapping of used standards has to be done when more than one security standard is employed in order to prevent redundant activities, not optimal resource management and unnecessary outlays. Employment of secu...

Data security is an infrastructure designed to protect and secure data from unauthorized access, manipulation, malfunction, destruction, inappropriate disclosure. Currently, organizations widely use transfer validate verify using different media particularly in host-to-host connections. This research focuses on exchanged (end-to-end communication) Multi Protocol Label Switching (MPLS), metro et...