The Actual Problems of IT-Security Process Assurance
Title | The Actual Problems of IT-Security Process Assurance |
Publication Type | Conference Paper |
Year of Publication | 2019 |
Authors | Livshitz, Ilva I., Lontsikh, Pawel A., Lontsiklr, Natalia P., Karascv, Sergey, Golovina, Elena |
Conference Name | 2019 International Conference "Quality Management, Transport and Information Security, Information Technologies" (IT QM IS) |
Date Published | sep |
Publisher | IEEE |
ISBN Number | 978-1-7281-2595-4 |
Keywords | asset, business process, Companies, company business processes, IEC standards, Information management, Integrated Management System, integrated management systems, ISO standards, IT-security management system, IT-security process assurance, organisational aspects, Production, pubcrawl, resilience, Resiliency, risk management, security, security of data, Standard, System recovery, Vulnerability |
Abstract | The article deals with the aspects of IT-security of business processes, using a variety of methodological tools, including Integrated Management Systems. Currently, all IMS consist of at least 2 management systems, including the IT-Security Management System. Typically, these IMS cover biggest part of the company business processes, but in practice, there are examples of different scales, even within a single facility. However, it should be recognized that the total number of such projects both in the Russian Federation and in the World is small. The security of business processes will be considered on the example of the incident of Norsk Hydro. In the article the main conclusions are given to confirm the possibility of security, continuity and recovery of critical business processes on the example of this incident. |
URL | https://ieeexplore.ieee.org/document/8928349 |
DOI | 10.1109/ITQMIS.2019.8928349 |
Citation Key | livshitz_actual_2019 |
- organisational aspects
- Vulnerability
- System recovery
- Standard
- security of data
- security
- risk management
- Resiliency
- resilience
- pubcrawl
- Production
- asset
- IT-security process assurance
- IT-security management system
- ISO standards
- integrated management systems
- Integrated Management System
- information management
- IEC standards
- company business processes
- Companies
- business process