Information Security Threats: A Comparative Analysis of Impact, Probability, and Preparedness

被引：18

作者：

Sumner, Mary ^{[1
]}

机构：

[1] So Illinois Univ, Sch Business, Edwardsville, IL 62026 USA

来源：

INFORMATION SYSTEMS MANAGEMENT | 2009年 / 26卷 / 01期

关键词：

information security; risk assessment; risk mitigation;

D O I：

10.1080/10580530802384639

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The objectives are: (1) to determine the risk assessment of information security threats, based upon the perceived impact and the perceived probability of occurrence of these threats; (2) to determine the extent of risk mitigation, based upon the perceived level of preparedness for each of these information security threats; and (3) to determine the extent to which the of occurrence and the impact of information security threats relate to the level of preparedness.

引用

页码：2 / 12

页数：11

共 20 条

[1]

[Anonymous], 2004 CSI FBI COMPUTE

[2]

Atkinson W., 2005, RISK MANAGEMENT, V52, P32

[3] Business continuity planning: A comprehensive approach [J].

Cerullo, V ;

Cerullo, MJ .

INFORMATION SYSTEMS MANAGEMENT, 2004, 21 (03) :70-78

[4]

COOK I, 2007, FINANCIAL TIMES 0212, P10

[5]

*DEF SYST MAN COLL, 2001, RISK MAN GUID DOD AC

[6]

Garretson C., 2007, Network World, V24, P11, DOI [10.1080/10580530802384639, DOI 10.1080/10580530802384639]

[7]

HAGG A, 2002, CONTINGENCY PLANNING, V7

[8]

Herold R., 2006, Information Systems Security, V14, P16

[9] Information security threats and practices in small businesses [J].

Keller, S ;

Powell, A ;

Horstmann, B ;

Predmore, C ;

Crawford, M .

INFORMATION SYSTEMS MANAGEMENT, 2005, 22 (02) :7-19

[10]

Peiro A., 2005, Small business information security readiness, P1

← 1 2 →