The factor of the risk and risk management In information security

Khabarshy Zan'' seriiasy Pub Date : 2021-12-01 DOI:10.26577/japj.2021.v100.i4.12

A. Ibrahimova

{"title":"The factor of the risk and risk management In information security","authors":"A. Ibrahimova","doi":"10.26577/japj.2021.v100.i4.12","DOIUrl":null,"url":null,"abstract":"Risk is the consequence of events and dangers. To rephrase it, an event that will cause damage and deprivation and this happening can be described via the term of information. The word risk means foreseeable dangers or being under the threat of possible damage. It defines the occurrence of an event that could lead to damage or loss. This term is used for events that are synonymous with danger and are expected to occur, but it is not clear whether they will occur or not. Thus, risk management means managing this uncertain environment. Risk Information Security Management system requires a risk-based approach. Information security policy emerges and is formed based on the results of risk analysis. There-fore, risk management is essential. As well as the systematic use of information contributes to identifying sources and forecasting risks. Information systems analyze the value of assets, threats and shortcomings in risk analysis. Here, the risks are assessed depending on the severity of the potential impact on the confidentiality, integrity and reliability of information systems. Everything that has value for an organization is called information availability. The standards define the availability of information as information that is valuable to the organization and should always be protected.","PeriodicalId":52614,"journal":{"name":"Khabarshy Zan'' seriiasy","volume":" ","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2021-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Khabarshy Zan'' seriiasy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.26577/japj.2021.v100.i4.12","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Risk is the consequence of events and dangers. To rephrase it, an event that will cause damage and deprivation and this happening can be described via the term of information. The word risk means foreseeable dangers or being under the threat of possible damage. It defines the occurrence of an event that could lead to damage or loss. This term is used for events that are synonymous with danger and are expected to occur, but it is not clear whether they will occur or not. Thus, risk management means managing this uncertain environment. Risk Information Security Management system requires a risk-based approach. Information security policy emerges and is formed based on the results of risk analysis. There-fore, risk management is essential. As well as the systematic use of information contributes to identifying sources and forecasting risks. Information systems analyze the value of assets, threats and shortcomings in risk analysis. Here, the risks are assessed depending on the severity of the potential impact on the confidentiality, integrity and reliability of information systems. Everything that has value for an organization is called information availability. The standards define the availability of information as information that is valuable to the organization and should always be protected.

查看原文本刊更多论文

信息安全中的风险因素与风险管理

风险是事件和危险的结果。换言之，可以通过信息这个术语来描述一个会造成损害和剥夺的事件。风险一词是指可预见的危险或可能受到损害的威胁。它定义了可能导致损坏或损失的事件的发生。该术语用于与危险同义并预计会发生的事件，但尚不清楚这些事件是否会发生。因此，风险管理意味着管理这种不确定的环境。风险信息安全管理系统需要基于风险的方法。信息安全政策是在风险分析结果的基础上产生和形成的。因此，风险管理至关重要。以及系统地使用信息有助于识别来源和预测风险。信息系统分析资产的价值、威胁和风险分析中的不足。在这里，风险的评估取决于对信息系统的机密性、完整性和可靠性的潜在影响的严重程度。对组织有价值的一切都称为信息可用性。这些标准将信息的可用性定义为对组织有价值且应始终受到保护的信息。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Khabarshy Zan'' seriiasy

自引率

0.00%

发文量

审稿时长

10 weeks