A formalized model of an organization information security audit for compliance with the requirements of standards

Sirotskiy, Alexei A.; Reznichenko, S. A.

doi:10.26583/bit.2021.3.09

BIT

2021

DOI: 10.26583/bit.2021.3.09

|View full text |Cite

A formalized model of an organization information security audit for compliance with the requirements of standards

Alexei A. Sirotskiy

S. A. Reznichenko

Abstract: Аннотация. Задача аудита информационной безопасности заключается в проверке соответствия системы защиты объекта совокупности критериев, определяющих требования к уровню защищенности. В этой связи необходимо определить и формализовать совокупность критериев, отражающих уровень защищенности объекта и выявление показателей, по которым можно провести объективные процедуры проверки. Аудит информационной безопасности проводится на предмет соответствия требованиям любых стандартов в области информационной безопасност… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2024

Publication Types

Select...

Article1

Relationship

Self Cite1

Independent0

Authors

Journals

Cited by 1 publication

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

Organization of response to information security incidents

Trofimov,

Shepelev,

Reznichenko

2024

Vestn. Dagest. gos. teh. univ., Teh. nauki

Self Cite

View full text Add to dashboard Cite

Objective. Development of practical recommendations for creating an effective information security incident response system. Method. The article includes an analysis of existing methods and tools for detecting and analyzing information security incidents, as well as a study of the consequences of such incidents and their impact on the work of a company or organization. Result. Development of a set of practical recommendations aimed at creating an effective information security incident response system. During the analysis of existing methods and tools for the detection and analysis of information security incidents, the most effective and adapted approaches were identified. These methods include both technical means of detection and rapid incident response processes. The recommendations were created taking into account the characteristics of companies and organizations of various industries and are also intended for use by persons who do not have deep knowledge in the field of information security. The recommendations include clear step-by-step instructions, resources and tips that will allow companies to easily implement the proposed measures in their practice. Conclusion. The development of an effective information security incident response system is critically important for companies and organizations, as they face an increasing number of cyber-attacks and threats to information security. Creating an effective information security incident response system is an integral part of a successful business strategy. The developed practical recommendations have the potential to significantly reduce the risks and damage associated with information security, even for companies and organizations without prior experience in this field. These recommendations focus not only on technical aspects, but also on organizational measures to ensure timely detection, analysis and response to incidents.

show abstract

Organization of response to information security incidents

Trofimov,

Shepelev,

Reznichenko

2024

Vestn. Dagest. gos. teh. univ., Teh. nauki

Self Cite

View full text Add to dashboard Cite

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

A formalized model of an organization information security audit for compliance with the requirements of standards

Cited by 1 publication

References 1 publication

Organization of response to information security incidents

Organization of response to information security incidents

Contact Info

Product

Resources

About