A Rigorous Approach to the Definition of an International Vocational Master’s Degree in Information Security Management

2010 ◽  
Vol 1 (4) ◽  
pp. 1-17 ◽  
Author(s):  
Frédéric Girard ◽  
Bertrand Meunier ◽  
Duan Hua ◽  
Eric Dubois
Keyword(s):  
Information Security ◽  
Security Management ◽  
Holistic Approach ◽  
Learning Trajectory ◽  
Learning Program ◽  
Information Security Management ◽  
Security Officer ◽  
Rigorous Approach ◽  
Definition Of ◽  
New Education

In Luxembourg, like in many other countries, information security has become a central issue for private companies and public organizations. Today, information is the main asset of a company for its business and, at the same time, regulations are imposing more and more rules regarding its management. As a consequence, in Luxembourg, a clear need has emerged regarding the development of new learning trajectory fulfilling the requirements of the new job profile associated with a Chief Security Officer. This need was relayed by the national professional security association which asked for the development of a new education program targeting professional people engaged in a lifelong learning trajectory. The paper reports on the rigorous and scientific participatory approach for producing the adequate learning program meeting requirements elicited from the professional association members. The authors present the skills card that has been elaborated for capturing these requirements and the program, which has been built together with the University of Luxembourg for matching these requirements. This program proposes a holistic approach to information security management by including organization, human and technical security risks within the context of regulations and norms.

A Rigorous Approach to the Definition of an International Vocational Master’s Degree in Information Security Management

2012 ◽  
pp. 328-343
Author(s):  
Frédéric Girard ◽  
Bertrand Meunier ◽  
Duan Hua ◽  
Eric Dubois
Keyword(s):  
Information Security ◽  
Security Management ◽  
Holistic Approach ◽  
Learning Trajectory ◽  
Learning Program ◽  
Information Security Management ◽  
Security Officer ◽  
Rigorous Approach ◽  
Definition Of ◽  
The University

In Luxembourg, like in many other countries, information security has become a central issue for private companies and public organizations. Today, information is the main asset of a company for its business and, at the same time, regulations are imposing more and more rules regarding its management. As a consequence, in Luxembourg, a clear need has emerged regarding the development of new learning trajectory fulfilling the requirements of the new job profile associated with a Chief Security Officer. This need was relayed by the national professional security association which asked for the development of a new education program targeting professional people engaged in a lifelong learning trajectory. The paper reports on the rigorous and scientific participatory approach for producing the adequate learning program meeting requirements elicited from the professional association members. The authors present the skills card that has been elaborated for capturing these requirements and the program, which has been built together with the University of Luxembourg for matching these requirements. This program proposes a holistic approach to information security management by including organization, human and technical security risks within the context of regulations and norms.

scholarly journals PENGENALAN ISO 17799/BS7799: Sistem Manajemen Keamanan Informasi

TeIKa ◽  
2008 ◽  
Vol 1 (1) ◽  
pp. 54-62
Author(s):  
Arief Hamdani Gunawan ◽  
Albinur Limbong
Keyword(s):  
Information Security ◽  
Security Management ◽  
Information Security Management ◽  
Important Thing ◽  
International Standard ◽  
Fundamental Matter ◽  
Definition Of

Abstrak Manajemen keamanan informasi merupakan hal yang mendasar untuk dapat menyediakan keamanan informasi. Salah satu hal penting untuk dapat melakukan manajemen keamanan informasi ini adalah menggunakan standar internasional yang sudah ada, yaitu IS0 l7799/BS7799. Tulisan ini berturut-turut akan menguraikan mengenai mulai dari definisi ISO 17799/BS7799, latar belakang, penggunaan, keuntungan sampai dengan komplemen dari ISO 17799.   Abstract Management of Information Security is a fundamental matter to be able to provide information security. One important thing to be able to do information security management is to use an available international standard, which is ISO 17799/BS7799. This paper describe starting from the definition of ISO 17799/BS7799, background, usage, the advantages until the complement of ISO 17799.

scholarly journals METHOD OF INFORMATION SECURITY MANAGEMENT SYSTEMS FUNCTIONAL ANALYSIS

2020 ◽  
Vol 4 (8) ◽  
pp. 192-201
Author(s):  
Vasyl Tsurkan
Keyword(s):  
Functional Analysis ◽  
Information Security ◽  
Security Management ◽  
Logical Structure ◽  
International Standards ◽  
Management Systems ◽  
Graphic Notation ◽  
Information Security Management ◽  
Main Activity ◽  
Definition Of

The process of functional analysis of information security management systems was considered. The relevance of their presentation with many interrelated functions with internal and external interfaces is shown. Taking this into account, the methods of functional analysis of information security management systems are analyzed. Among them, graphic notation IDEF0 is highlighted. This choice is based on the ability to display both interfaces of functions and the conditions and resources of their execution. The orientation of the graphic notation IDEF0 use is established mainly for the presentation of the international standards ISO/IEC 27k series, the display of the main stages of the information security management systems life cycle, the development of individual elements of information security management systems, in particular, risk management. These limitations have been overcome by the method of information security management systems in functional analysis. This was preceded by the definition of the theoretical foundations of this method. Its use allows to allocate their functions at both levels of the system, and levels of its structural elements (subsystems, complexes, components). To do this, define the purpose, viewpoint and establishes information security management as the main activity. It is represented by a set of hierarchically related functions that are represented by a family tree. Each function of this tree defines incoming, outgoing data, management, and mechanisms. This makes it possible to establish their consistency with the organizational structure at the “activity-system”, “process-subsystem”, “operation-module (complex)” and “action-block (component)” levels. In future studies, it is planned to define a hierarchy of functions and develop a logical structure of information security management systems based on the proposed method of functional analysis.

Sign in / Sign up

Export Citation Format

Share Document