Title :
Traceable Quantitative Risk Assessment Applied to Investment Decision for Local Backups
Author :
Weiss, Steffen ; Wahl, Martin ; Tielemann, Michael ; Meyer-Wegener, Klaus
Author_Institution :
DATEVeG, Erlangen
Abstract :
Most organizations have critical data, i.e. customer data or large databases. If these data are lost, organization´s existence is in danger. As a consequence, backups for the systems are produced. However, some data are stored only on the computers of employees. These data are usually less critical, but their value cannot be neglected. At DATEV eG in Nuremberg, the question has risen whether it is economically justified to install backup mechanisms for these data. To answer this question, we first present a model to perform an assessment. With the help of this model, we calculate the expected annual cost of repair employees´ computers and data including all side effects. Finally the break-even point in cost-efficiency is computed for the example of DATEV eG.
Keywords :
back-up procedures; business continuity; risk management; break-even point; employee computer repair cost; investment decision; local backup mechanism; traceable quantitative risk assessment; Availability; Costs; Data security; IEC standards; ISO standards; Information security; Investments; NIST; Network servers; Risk management; Risk analysis; data security; security assessment; security modeling;
Conference_Titel :
Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-0-7695-3102-1
DOI :
10.1109/ARES.2008.108
