Sciweavers

CRITIS
2007

Modeling and Simulating Information Security Management

14 years 1 months ago
Modeling and Simulating Information Security Management
Security Management is a complex task. It requires several interconnected activities: designing, implementing and maintaining a robust technical infrastructure, developing suitable formal procedures and building a widespread, agreed upon security culture. Thus, security managers have to balance and integrate all these activities simultaneously, which involves short and long-term effects and risks. For this reason, security managers need to correctly understand, achieve and maintain a dynamic equilibrium between all of them. The development of a simulation model can be an efficient approach towards this objective, as it involves making explicit key factors in security management and their interconnections to efficiently reduce organizational security risks. This endogenous perspective of the problem can help managers to design and implement more effective policies. This paper presents a methodology for developing simulation models for information security management. The use of this met...
Jose Maria Sarriegi, Javier Santos, Jose M. Torres
Added 26 Oct 2010
Updated 26 Oct 2010
Type Conference
Year 2007
Where CRITIS
Authors Jose Maria Sarriegi, Javier Santos, Jose M. Torres, David Imizcoz, Elyoenai Egozcue, Daniel Liberal
Comments (0)