Title :
ARiMA - A New Approach to Implement ISO/IEC 27005
Author :
Leitner, Alexander ; Schaumüller-Bichl, Ingrid
Author_Institution :
FH OOE F&E GmbH, Hagenberg, Algeria
Abstract :
This paper deals with the implementation of a new IT risk management approach according to the ISO/IEC 27005 standard. The development of this new approach is closely linked to requirements of Austrian public authorities concerning IT risk analysis. For this reason a survey was carried out to get these requirements. Methods available on the international market have been evaluated to analyse how they comply with the subprocesses defined in ISO/IEC 27005 and to obtain the best practice approaches for the development of a new method. Finally the paper presents the core of a new IT risk management approach considering all mentioned aspects.
Keywords :
DP management; IEC standards; ISO standards; risk analysis; security of data; ARiMA; Austrian public authority; ISO/IEC 27005 standard; IT risk analysis; IT risk management approach; information security management system; international market; Best practices; Communication standards; Guidelines; IEC standards; ISO standards; Informatics; Information management; Information security; Risk analysis; Risk management;
Conference_Titel :
Logistics and Industrial Informatics, 2009. LINDI 2009. 2nd International
Conference_Location :
Linz
Print_ISBN :
978-1-4244-3958-4
Electronic_ISBN :
978-1-4244-3958-4
DOI :
10.1109/LINDI.2009.5258624
