PL EN


2011 | 19 | 164-178
Article title

Instytucjonalizacja i standaryzacja zarzadzania ryzykiem w systemie bezpieczenstwa informacji w przedsiebiorstwie

Authors
Title variants
EN
INSTITUTIONALIZATION AND STANDARDIZATION OF INFORMATION SECURITY RISK MANAGEMENT IN ENTERPRISE
Languages of publication
PL
Abstracts
EN
Modern information systems are often complex, heterogeneous and dynamic. Technological progress and widespread use of information systems in business generate dependencies that cause the increase of diversity, complexity, uncertainty and the amount of risk factors. Therefore risk management, focusing on finding the optimal relationship between the risks and the cost of security issues, becomes increasingly important. Risk cannot be completely avoided, so it must be properly managed. Therefore organizations should implement standards, guidelines and best practices. The article presents selected standards concerning a very rapidly developing area which is information security risk management in an organization. The major ISO/IEC standards and selected best practices in this area are presented.
Year
Issue
19
Pages
164-178
Physical description
Document type
ARTICLE
Contributors
author
  • Artur Rot, Uniwersytet Ekonomiczny we Wroclawiu, Katedra Inzynierii Systemow Informatycznych Zarzadzania, ul. Komandorska 118/120, 53-345 Wroclaw, Poland
References
Document Type
Publication order reference
Identifiers
CEJSH db identifier
11PLAAAA108014
YADDA identifier
bwmeta1.element.d18bf9ba-e700-33b4-a706-f6765a5380c6
JavaScript is turned off in your web browser. Turn it on to take full advantage of this site, then refresh the page.