Advanced
search

To read this content please select one of the options below:

A business approach to effective information technology risk analysis and management

Sharon Halliday (UNISYS, Port Elizabeth, South Africa)
Karin Badenhorst (Integrated Risk Consultants (IRC), Johannesburg, South Africa)
Rossouw von Solms (Department of Information Technology, Port Elizabeth, Technikon, South Africa)

Information Management & Computer Security

ISSN: 0968-5227

Article publication date: 1 March 1996

5908

Abstract

Suggests that a number of difficulties are experienced by organizations using conventional risk analysis and management. “Conventional” refers to those methodologies which are based on the traditional asset/threat/vulnerability model. Identifies a need for an approach that is more suitable for smaller organizations, as well as organizations requiring a quicker, more simplified and less resource‐intensive approach. In light of this requirement, proposes an alternative approach to effective information technology (IT) risk analysis and management. This approach has a business‐oriented focus from an IT perspective.

Keywords

Citation

Halliday, S., Badenhorst, K. and von Solms, R. (1996), "A business approach to effective information technology risk analysis and management", Information Management & Computer Security, Vol. 4 No. 1, pp. 19-31. https://doi.org/10.1108/09685229610114178

Publisher

:

MCB UP Ltd

Copyright © 1996, MCB UP Limited

Related articles

Manage cookies

We’re listening — tell us what you think

Join us on our journey