Tehnički vjesnik, Vol. 21 No. 3, 2014.
Izvorni znanstveni članak
Decision support based on the risk assessment of information systems and Bayesian learning
Hrvoje Očevčić
; Hypo Alpe-Adria-Bank d.d., Slavonska avenija 6, 10000 Zagreb, Croatia
Krešimir Nenadić
; Elektrotehnički fakultet Osijek Cara Hadrijana bb, 31000 Osijek, Croatia
Krešimir Šolić
; Medicinski fakultet Osijek, Josipa Huttlera 4, 31000 Osijek, Croatia
Sažetak
Risk protection has long been one of the main tasks of companies in a wide scope of business. From extensive range of risks the cyber-risks highlight as one of the most important. Cyber-risks are generated from hackers, malicious software, disgruntled employees, competitors, and many other sources both internal and external. Internal and external attacks on corporate assets and rapidly growing technology forced corporate management to conduct more appropriate awareness of the information security risks to information assets. The information security risk assessment, when performed correctly, can give corporate managers the information they need in order to understand and control the risks to their assets. The risks are in much more detail analysed in economic sectors, but in recent years there is increasing of risk assessment practice in the world of information technology. The model presented in this paper integrates the management and analysis of information risks and decision-making theory and thus creates a framework for the integrated management information system based on the technological risk assessment and Bayesian learning. The paper shows simulation and two case study scenarios in which is presented a potentially wide range of usage.
Ključne riječi
Bayesian learning; information system risk; risk assessment; threats; vulnerabilities
Hrčak ID:
123319
URI
Datum izdavanja:
24.6.2014.
Posjeta: 2.729 *