Emine Serap Kurt, Aysun Yaşar, Kenan Terzioğlu, S. Demirkıran
{"title":"一种新的信息安全风险评估方法:八度快板","authors":"Emine Serap Kurt, Aysun Yaşar, Kenan Terzioğlu, S. Demirkıran","doi":"10.36880/c14.02624","DOIUrl":null,"url":null,"abstract":"Information system risk assessment, an essential aspect of information security management, assists organizations in identifying and analyzing critical information system assets and reducing potential risks. Internal control and risk management are two systems that complement each other in controlling an organization's activities. As a result, internal control activities, critical for controlling and managing risks, should be carried out with a risk focus. Institutions should first analyze the risks that may emerge in business processes before evaluating the steps that should be taken to secure their information assets. Many risk assessment methods are complicated and expensive, and qualified professionals should only carry them out. The OCTAVE Allegro method is a comprehensive assessment of an organization's operational risk environment to get better results without requiring considerable risk assessment information. Risk assessment can be completed in a short period and at a low cost using this method, and the effectiveness of internal control can be improved. The study's objective is to give information about the OCTAVE Allegro method, which can help prevent the risks of ensuring information security as information technologies advance and explain the method's application areas.","PeriodicalId":130191,"journal":{"name":"International Conference on Eurasian Economies 2022","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"A New Generation Method for Assessing Information Security Risks: OCTAVE Allegro\",\"authors\":\"Emine Serap Kurt, Aysun Yaşar, Kenan Terzioğlu, S. Demirkıran\",\"doi\":\"10.36880/c14.02624\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Information system risk assessment, an essential aspect of information security management, assists organizations in identifying and analyzing critical information system assets and reducing potential risks. Internal control and risk management are two systems that complement each other in controlling an organization's activities. As a result, internal control activities, critical for controlling and managing risks, should be carried out with a risk focus. Institutions should first analyze the risks that may emerge in business processes before evaluating the steps that should be taken to secure their information assets. Many risk assessment methods are complicated and expensive, and qualified professionals should only carry them out. The OCTAVE Allegro method is a comprehensive assessment of an organization's operational risk environment to get better results without requiring considerable risk assessment information. Risk assessment can be completed in a short period and at a low cost using this method, and the effectiveness of internal control can be improved. The study's objective is to give information about the OCTAVE Allegro method, which can help prevent the risks of ensuring information security as information technologies advance and explain the method's application areas.\",\"PeriodicalId\":130191,\"journal\":{\"name\":\"International Conference on Eurasian Economies 2022\",\"volume\":\"16 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Conference on Eurasian Economies 2022\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.36880/c14.02624\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Conference on Eurasian Economies 2022","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.36880/c14.02624","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A New Generation Method for Assessing Information Security Risks: OCTAVE Allegro
Information system risk assessment, an essential aspect of information security management, assists organizations in identifying and analyzing critical information system assets and reducing potential risks. Internal control and risk management are two systems that complement each other in controlling an organization's activities. As a result, internal control activities, critical for controlling and managing risks, should be carried out with a risk focus. Institutions should first analyze the risks that may emerge in business processes before evaluating the steps that should be taken to secure their information assets. Many risk assessment methods are complicated and expensive, and qualified professionals should only carry them out. The OCTAVE Allegro method is a comprehensive assessment of an organization's operational risk environment to get better results without requiring considerable risk assessment information. Risk assessment can be completed in a short period and at a low cost using this method, and the effectiveness of internal control can be improved. The study's objective is to give information about the OCTAVE Allegro method, which can help prevent the risks of ensuring information security as information technologies advance and explain the method's application areas.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
