TY - GEN
T1 - Development of the Technique for the Identification, Assessment and Neutralization of Risks in Information Systems
AU - Boranbayev, Askar
AU - Boranbayev, Seilkhan
AU - Nurbekov, Askar
N1 - Publisher Copyright:
© Springer Nature Switzerland AG 2020.
Copyright:
Copyright 2020 Elsevier B.V., All rights reserved.
PY - 2020/1/1
Y1 - 2020/1/1
N2 - The article is devoted to the development of methods for identifying, assessing and neutralizing risks in order to ensure the reliability and security of information systems. The regulatory requirements for risk analysis in information systems have been developed. The methodology for analyzing information security risks in the banking sector has been developed and analyzed. Effective risk reduction strategies were used. Studied methods allow the user to receive a quantitative risk assessment of the system. This makes it possible to eliminate the need to use expensive resources to identify risks. Research was conducted on building an Information Security Risk Management System, measures and procedures for identifying, measuring, monitoring, controlling and minimizing information security risks. The purpose of the Information Security Risk Management System is to prevent and reduce the threat of negative consequences associated with the operation of information systems, as well as external factors affecting information systems. It is aimed at minimizing the risks in bank’s activities related to the violation of the integrity, confidentiality and availability of information systems.
AB - The article is devoted to the development of methods for identifying, assessing and neutralizing risks in order to ensure the reliability and security of information systems. The regulatory requirements for risk analysis in information systems have been developed. The methodology for analyzing information security risks in the banking sector has been developed and analyzed. Effective risk reduction strategies were used. Studied methods allow the user to receive a quantitative risk assessment of the system. This makes it possible to eliminate the need to use expensive resources to identify risks. Research was conducted on building an Information Security Risk Management System, measures and procedures for identifying, measuring, monitoring, controlling and minimizing information security risks. The purpose of the Information Security Risk Management System is to prevent and reduce the threat of negative consequences associated with the operation of information systems, as well as external factors affecting information systems. It is aimed at minimizing the risks in bank’s activities related to the violation of the integrity, confidentiality and availability of information systems.
KW - Method
KW - Reliability
KW - Risk analysis
KW - Risk assessment
KW - Safety
UR - http://www.scopus.com/inward/record.url?scp=85081547910&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85081547910&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-39445-5_53
DO - 10.1007/978-3-030-39445-5_53
M3 - Conference contribution
AN - SCOPUS:85081547910
SN - 9783030394448
T3 - Advances in Intelligent Systems and Computing
SP - 733
EP - 742
BT - Advances in Information and Communication - Proceedings of the 2020 Future of Information and Communication Conference FICC
A2 - Arai, Kohei
A2 - Kapoor, Supriya
A2 - Bhatia, Rahul
PB - Springer
T2 - Future of Information and Communication Conference, FICC 2020
Y2 - 5 March 2020 through 6 March 2020
ER -