学术探索
学术期刊
新闻热点
数据分析
智能评审

Information systems risk management: Key concepts and business processes

被引:31
作者
Finne, T [1 ]
机构
[1] Pricewaterhouse Coopers, FIN-00101 Helsinki, Finland
来源
COMPUTERS & SECURITY | 2000年 / 19卷 / 03期
关键词
business processes; controls; decisions; data; information; information security (ISec); information systems (IS); key concept; knowledge; method; methodology; model; research; risk management; security; theory;
D O I
10.1016/S0167-4048(00)88612-5
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Information systems risk management is as a problem area extremely wide, complex and of an interdisciplinary nature, which high-lights the importance of having an adequate understanding of the many concerts that are included in the area. Dealing with definitions of those concerts is a somewhat 'boring' task, however probably it can be considered to he an important one. Iri the second part of this article my attempt is to move to perhaps more 'exciting' things, namely to highlight the significant importance that business processes and internal controls hale in IS risk management.
引用
收藏
页码:234 / 242
页数:9
相关论文
共 40 条
[1]  
[Anonymous], MANAGING KNOWLEDGE
[2]  
[Anonymous], 1981, FDN DECISION SUPPORT
[3]  
[Anonymous], 1992, INFORM SYSTEMS RES I
[4]  
ANTILL L, 1985, P IFIP WG 8 2 COLL M, P203
[5]  
BRANNBACK M, 1996, THESIS ABO AKAD U AB
[6]  
BRANNBACK M, 1993, THESIS ABO AKAD U TR
[7]  
CAELLI W, 1989, INFORMATION SECURITY
[8]  
Checkland P., 1981, Systems thinking, systems practice
[9]  
*COBIT, 1998, FRAM INF SYST AUD CO
[10]  
DAVIS G, 1985, CONCEPTUAL FDN STRUC
1234