A business approach to effective information technology risk analysis and management
Abstract
Suggests that a number of difficulties are experienced by organizations using conventional risk analysis and management. “Conventional” refers to those methodologies which are based on the traditional asset/threat/vulnerability model. Identifies a need for an approach that is more suitable for smaller organizations, as well as organizations requiring a quicker, more simplified and less resource‐intensive approach. In light of this requirement, proposes an alternative approach to effective information technology (IT) risk analysis and management. This approach has a business‐oriented focus from an IT perspective.
Keywords
Citation
Halliday, S., Badenhorst, K. and von Solms, R. (1996), "A business approach to effective information technology risk analysis and management", Information Management & Computer Security, Vol. 4 No. 1, pp. 19-31. https://doi.org/10.1108/09685229610114178
Publisher
:MCB UP Ltd
Copyright © 1996, MCB UP Limited