| | SLO | ENG | Cookies and privacy

Bigger font | Smaller font

Show document Help

Title:Quantitative model for economic analyses of information security investment in an enterprise information system
Authors:ID Bojanc, Rok (Author)
ID Jerman-Blažič, Borka (Author)
Files:.pdf Organizacija_2012_Bojanc,_Jerman-Blazic_Quantitative_Model_for_Economic_Analyses_of_Information_Security_Investment_in_an_Enterprise_Inf.pdf (2,18 MB)
MD5: 8BFB00DA78EC27374B8C54D9C39A7023
PID: 20.500.12556/dkum/ede9658c-cc3f-4c18-a746-840233fc522f
 
URL http://www.degruyter.com/view/j/orga.2012.45.issue-6/v10051-012-0027-z/v10051-012-0027-z.xml
 
Language:English
Work type:Scientific work
Typology:1.01 - Original Scientific Article
Organization:FOV - Faculty of Organizational Sciences in Kranj
Abstract:The paper presents a mathematical model for the optimal security-technology investment evaluation and decision-making processes based on the quantitative analysis of security risks and digital asset assessments in an enterprise. The model makes use of the quantitative analysis of different security measures that counteract individual risks by identifying the information system processes in an enterprise and the potential threats. The model comprises the target security levels for all identified business processes and the probability of a security accident together with the possible loss the enterprise may suffer. The selection of security technology is based on the efficiency of selected security measures. Economic metrics are applied for the efficiency assessment and comparative analysis of different protection technologies. Unlike the existing models for evaluation of the security investment, the proposed model allows direct comparison and quantitative assessment of different security measures. The model allows deep analyses and computations providing quantitative assessments of different options for investments, which translate into recommendations facilitating the selection of the best solution and the decision-making thereof. The model was tested using empirical examples with data from real business environment.
Keywords:modelling, security technology, economic metrics, investment, enterprise information system
Publication status:Published
Publication version:Version of Record
Year of publishing:2012
Number of pages:str. 276-288
Numbering:Letn. 45, št. 6
PID:20.500.12556/DKUM-69400 New window
ISSN:1318-5454
UDC:33
ISSN on article:1318-5454
COBISS.SI-ID:26317095 New window
DOI:10.2478/v10051-012-0027-z New window
NUK URN:URN:SI:UM:DK:5AJELWMF
Publication date in DKUM:22.01.2018
Views:1153
Downloads:380
Metadata:XML RDF-CHPDL DC-XML DC-RDF
Categories:Misc.
:
Copy citation
  
Average score:(0 votes)
Your score:Voting is allowed only for logged in users.
Share:Bookmark and Share


Hover the mouse pointer over a document title to show the abstract or click on the title to get all document metadata.

Record is a part of a journal

Title:Organizacija. revija za management, informatiko in kadre
Shortened title:Organizacija
Publisher:Moderna organizacija
ISSN:1318-5454
COBISS.SI-ID:610909 New window

Licences

License:CC BY-NC-ND 4.0, Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International
Link:http://creativecommons.org/licenses/by-nc-nd/4.0/
Description:The most restrictive Creative Commons license. This only allows people to download and share the work for no commercial gain and for no other purposes.
Licensing start date:22.01.2018

Secondary language

Language:Slovenian
Title:Kvantitativni model za ekonomsko analizo naložb v informacijsko varnost v poslovnem informacijskem sistemu
Abstract:V prispevku je predstavljen matematični model za vrednotenje naložb v varnostne tehnologije in odločitvene procese na podlagi kvantitativne analize varnostnih tveganj ter različnih varnostnih ukrepov, ki zmanjšujejo posamezna tveganja. Za vse ugotovljene poslovne procese se določijo želene stopnje varnosti, verjetnost za varnostni incident ter morebitna izguba, ki jo lahko utrpi podjetje. Izbor varnostne tehnologije temelji na učinkovitosti izbranih varnostnih ukrepov, pri čemer se za ocenjevanje učinkovitosti in primerjalno analizo različnih varnostnih tehnologij uporabljajo ekonomski kazalci. Za razliko od obstoječih modelov za oceno naložb v informacijsko varnost, omogoča predlagani model neposredno primerjavo in kvantitativno oceno različnih varnostnih ukrepov. Model omogoča podrobno analizo kvantitativnih ocen za različne vrste naložb, ter podaja priporočila, ki omogočajo izbiro optimalne varnostne rešitve. Model je bil testiran z uporabo praktičnih primerov s podatki iz realnega poslovnega okolja.
Keywords:modeliranje, varnostna tehnologija, ekonomske meritve, naložbe, informacijski sistem podjetja


Collection

This document is a part of these collections:
  1. Organizacija

Comments

Leave comment

You must log in to leave a comment.

Comments (0)
0 - 0 / 0
 
There are no comments!

Back
Logos of partners University of Maribor University of Ljubljana University of Primorska University of Nova Gorica