How to Integrate Languages on Safety: A Participatory Information System to Improve Risk Management

2017 ◽  
pp. 41-52 ◽  
Author(s):  
Marco Trizio ◽  
Cristiano Occelli ◽  
Alessandra Re
Keyword(s):  
Information System ◽  
Risk Management

FORMALIZED DESCRIPTION OF THE PROCEDURE OF INFORMATION SYSTEM RISK MANAGEMENT

2018 ◽  
pp. 61-70
Author(s):  
Svetlana Sergeevna Kozunova ◽  
Alla Grigorievna Kravets
Keyword(s):  
Information System ◽  
Risk Management ◽  
Negative Consequences ◽  
Management Procedure ◽  
System Risk ◽  
Weak Points ◽  
Formalized Description ◽  
Relationship Of ◽  
The Relationship ◽  
Further Development

The article highlights the aspects of risk management in the information system. According to the analysis of the work of Russian and foreign scientists and world practices in the field of risk management, it is stated that there is a need to improve the effectiveness of risk management of information system and to develop a method for managing the risks of the information system. As a solution to the problem of effective risk management of the information system, there has been proposed a formalized procedure for managing the risks of the information system. The scientific novelty of this solution is the use of decision space and optimization space to reduce risks. This procedure allows to assess the damage, risk and effectiveness of risk management of the information system. The risks of the information system are determined and analyzed; a pyramidal risk diagram is developed. This diagram allows you to describe the relationship of risks with the components of the information system. The negative consequences to which these risks can lead are given. The analysis of methods and approaches to risk management has been carried out. Based on the results of the analysis, the methods GRAMM, CORAS, GOST R ISO / IEC scored to the maximum. The weak points of these methods and the difficulty of applying these methods in practice are described. The developed formalized risk management procedure to control the risks of information system can be used as management system’s element of the information security quality that complies with the recommendations of GOST R ISO / IEC 27003-2012. The prospect of further development of the research results is the development of management systems of risk of information system.

Risk Management of Information System Project

2013 ◽  
Vol 357-360 ◽  
pp. 2826-2829
Author(s):  
Hai Bin Liu ◽  
Fei Li ◽  
Wen Qiong Li
Keyword(s):  
Information System ◽  
Risk Management ◽  
Project Management ◽  
Project Risk ◽  
Management Procedure ◽  
System Project ◽  
Risk Categories

Risk and its management of information system project has not been too much attention, while its play an important role in the success of information system project. Risk categories, consequences, drivers and action approaches are analyzed and risk management procedure of information system project is proposed in order to carry out effective risk management during information system project management.

Sign in / Sign up

Export Citation Format

Share Document