The optimization of the integrated management system audit program

2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS) Pub Date : 2016-10-01 DOI:10.1109/ITMQIS.2016.7751919

I. Livshitz, Kseniya A. Nikiforova, P. Lontsikh, E. Y. Drolova, N. P. Lontsikh

{"title":"The optimization of the integrated management system audit program","authors":"I. Livshitz, Kseniya A. Nikiforova, P. Lontsikh, E. Y. Drolova, N. P. Lontsikh","doi":"10.1109/ITMQIS.2016.7751919","DOIUrl":null,"url":null,"abstract":"The application of Integrated Management Systems (IMS) is now attracting the attention of TOP management of a variety of organizations: refineries, machinery, instrument-making, aviation, defense, etc. However, now the major problem is still the performance of IMS audits as full implementation of complex checks from different ISO standards with a substantial limitation or reduction of available resources. At the same time, the continuous improvement of management principles and in particular - the transition to risk-based thinking provide a greater interest in the rational use of ISO standards. In this issue cover a technique of optimization IMS audits program, based on principles of continuous adaptation when entering data in a single micro-cycle audit. An additional advantage of proposed technique is the use of numerical IT-security metrics of audit, contributing to continuous improvement of the IT-security level of organizations.","PeriodicalId":330739,"journal":{"name":"2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)","volume":"70 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ITMQIS.2016.7751919","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

The application of Integrated Management Systems (IMS) is now attracting the attention of TOP management of a variety of organizations: refineries, machinery, instrument-making, aviation, defense, etc. However, now the major problem is still the performance of IMS audits as full implementation of complex checks from different ISO standards with a substantial limitation or reduction of available resources. At the same time, the continuous improvement of management principles and in particular - the transition to risk-based thinking provide a greater interest in the rational use of ISO standards. In this issue cover a technique of optimization IMS audits program, based on principles of continuous adaptation when entering data in a single micro-cycle audit. An additional advantage of proposed technique is the use of numerical IT-security metrics of audit, contributing to continuous improvement of the IT-security level of organizations.

查看原文本刊更多论文

综合管理体系审核方案的优化

综合管理系统(IMS)的应用正引起炼油厂、机械、仪器制造、航空、国防等各种组织的高层管理人员的注意。但是，现在的主要问题仍然是IMS审计的性能，因为它完全实现了来自不同ISO标准的复杂检查，从而大大限制或减少了可用资源。与此同时，管理原则的不断改进，特别是向基于风险的思维的转变，为合理使用ISO标准提供了更大的兴趣。本文介绍了一种优化IMS审计程序的技术，该技术基于在单个微周期审计中输入数据时的持续适应原则。所建议的技术的另一个优点是使用数字it安全审计度量，有助于持续改进组织的it安全级别。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)

自引率

0.00%

发文量