SECURITY RISK MANAGEMENT MODEL

This chapter presents the security concepts terminologies (threat, risk, security risk management, security risk management process, security threat model) and present the state of the art of security risk management models, compare and discuss strengths and weaknesses of such models. Then it presents the Mean Failure Cost (MFC) model for quantifying security threats as a rigorous measure of cyber security, and as a cascade of linear models in order to estimate the system security using the loss of a given stakeholders as a result of security breakdown. Finally it presents an overview of the applicability of the MFC measure to e-systems. In the conclusion, the chapter criticizes the MFC Cyber Security Measure and presents an overview of different perspectives.

Download Full-text

The Rigorous Security Risk Management Model

Cyber Security and Threats ◽

10.4018/978-1-5225-5634-3.ch024 ◽

2018 ◽

pp. 452-470

Author(s):

Neila Rjaibi ◽

Latifa Ben Arfa Rabai

Keyword(s):

Risk Management ◽

Cyber Security ◽

Linear Models ◽

Management Model ◽

Security Risk ◽

Security Threat ◽

Risk Management Process ◽

Failure Cost ◽

The Mean ◽

Security Risk Management

This chapter presents the security concepts terminologies (threat, risk, security risk management, security risk management process, security threat model) and present the state of the art of security risk management models, compare and discuss strengths and weaknesses of such models. Then it presents the Mean Failure Cost (MFC) model for quantifying security threats as a rigorous measure of cyber security, and as a cascade of linear models in order to estimate the system security using the loss of a given stakeholders as a result of security breakdown. Finally it presents an overview of the applicability of the MFC measure to e-systems. In the conclusion, the chapter criticizes the MFC Cyber Security Measure and presents an overview of different perspectives.

Download Full-text

The Rigorous Security Risk Management Model

Advances in Digital Crime, Forensics, and Cyber Terrorism - Cybersecurity Policies and Strategies for Cyberwarfare Prevention ◽

10.4018/978-1-4666-8456-0.ch005 ◽

2015 ◽

pp. 84-101 ◽

Cited By ~ 2

Author(s):

Neila Rjaibi ◽

Latifa Ben Arfa Rabai

Keyword(s):

Risk Management ◽

Cyber Security ◽

Linear Models ◽

Management Model ◽

Security Risk ◽

Security Threat ◽

Risk Management Process ◽

Failure Cost ◽

The Mean ◽

Security Risk Management

This chapter presents the security concepts terminologies (threat, risk, security risk management, security risk management process, security threat model) and present the state of the art of security risk management models, compare and discuss strengths and weaknesses of such models. Then it presents the Mean Failure Cost (MFC) model for quantifying security threats as a rigorous measure of cyber security, and as a cascade of linear models in order to estimate the system security using the loss of a given stakeholders as a result of security breakdown. Finally it presents an overview of the applicability of the MFC measure to e-systems. In the conclusion, the chapter criticizes the MFC Cyber Security Measure and presents an overview of different perspectives.

Download Full-text

IoT Security Risk Management Model for Secured Practice in Healthcare Environment

Procedia Computer Science ◽

10.1016/j.procs.2019.11.238 ◽

2019 ◽

Vol 161 ◽

pp. 1241-1248 ◽

Cited By ~ 1

Author(s):

Huraizah Zakaria ◽

Nur Azaliah Abu Bakar ◽

Noor Hafizah Hassan ◽

Suraya Yaacob

Keyword(s):

Risk Management ◽

Management Model ◽

Security Risk ◽

Iot Security ◽

Healthcare Environment ◽

Security Risk Management

Download Full-text

Research on the University Network Information Security Risk Management Model Based on the Fuzzy Sets

Proceedings of the 2015 International Conference on Automation, Mechanical Control and Computational Engineering ◽

10.2991/amcce-15.2015.17 ◽

2015 ◽

Author(s):

Cai-qiao Huo ◽

Li-zhuang Meng ◽

Kai Chen

Keyword(s):

Risk Management ◽

Information Security ◽

Fuzzy Sets ◽

Management Model ◽

Security Risk ◽

Network Information ◽

Model Based ◽

Information Security Risk ◽

Security Risk Management ◽

The University

Download Full-text

A Security Risk Management Model for Cloud Computing Systems: Infrastructure as a Service

Security, Privacy, and Anonymity in Computation, Communication, and Storage - Lecture Notes in Computer Science ◽

10.1007/978-3-319-72389-1_47 ◽

2017 ◽

pp. 594-608 ◽

Cited By ~ 3

Author(s):

Mouna Jouini ◽

Latifa Ben Arfa Rabai

Keyword(s):

Cloud Computing ◽

Risk Management ◽

Management Model ◽

Security Risk ◽

Infrastructure As A Service ◽

Computing Systems ◽

Security Risk Management

Download Full-text

Information security risk management model for mitigating the impact on SMEs in Peru

2020 15th Iberian Conference on Information Systems and Technologies (CISTI) ◽

10.23919/cisti49556.2020.9140980 ◽

2020 ◽

Author(s):

Daniel Felipe Carnero Garay ◽

Marcos Antonio Carbajal Ramos ◽

Jimmy Armas-Aguirre ◽

Juan Manuel Madrid Molina

Keyword(s):

Risk Management ◽

Information Security ◽

Management Model ◽

Security Risk ◽

Information Security Risk ◽

Security Risk Management ◽

The Impact

Download Full-text

Monitoring the Effectiveness of Security Countermeasures in a Security Risk Management Model

Software Engineering in Intelligent Systems - Advances in Intelligent Systems and Computing ◽

10.1007/978-3-319-18473-9_32 ◽

2015 ◽

pp. 327-337

Author(s):

Neila Rjaibi ◽

Latifa Ben Arfa Rabai

Keyword(s):

Risk Management ◽

Management Model ◽

Security Risk ◽

Security Risk Management ◽

Security Countermeasures

Download Full-text

An Ontology-Based Security Risk Management Model for Information Systems

Arabian Journal for Science and Engineering ◽

10.1007/s13369-020-04524-4 ◽

2020 ◽

Vol 45 (8) ◽

pp. 6183-6198

Author(s):

Oluwasefunmi T. Arogundade ◽

Adebayo Abayomi-Alli ◽

Sanjay Misra

Keyword(s):

Risk Management ◽

Information Systems ◽

Management Model ◽

Security Risk ◽

Security Risk Management

Download Full-text

Strategic Dimensions of Information Security Risk Management

Journal of Business Management and Information Systems ◽

10.48001/jbmis.2019.0602001 ◽

2019 ◽

Vol 6 (2) ◽

pp. 1-9 ◽

Cited By ~ 1

Author(s):

Ayush Gupta

Keyword(s):

Risk Management ◽

Information Security ◽

Business Models ◽

Business Processes ◽

Management Model ◽

Security Risk ◽

Best Value ◽

Information Security Risk ◽

Security Risk Management ◽

Flow Of Information

Information security is thus a big threat to the survival of enterprises. In all context and forms, it is an imperative to provide adequate safeguards and measures to management the risk arising from flow of information and data. The business models of organizations are highly dependent on flow of information during the business processes. The management of information security has several perspectives. In this paper, the legal, quality and human resource perspectives have been discussed. The Information Security Risk Management Model must balance these perspectives to optimize for best value derived out of it.

Download Full-text