Attributes | Values |
---|
rdf:type
| |
Description
| - The implementation and operation of efficient information security management systems (ISMS) according to the ISO/IEC 27001 standard involves a number of steps, among others implementation and operation of appropriate processes, policies and objectives. The crucial issue is the correct definition of the metrics for measurement of the effectiveness of established processes and established controls. The paper describes some practical metrics for ISMS processes review but primarily deals with the metrics for the security category ?Security in development and support processes? from the security control clause ?Information systems acquisition, development and maintenance processes? (ISO/IEC 27001, ISO/IEC 27002). Judged by the authors? research and experience, organizations often concentrate mainly on other security categories (Correct processing in application, Cryptographic controls, Security of system files) from the security control clause ?Information systems acquisition, development and maintenance
- The implementation and operation of efficient information security management systems (ISMS) according to the ISO/IEC 27001 standard involves a number of steps, among others implementation and operation of appropriate processes, policies and objectives. The crucial issue is the correct definition of the metrics for measurement of the effectiveness of established processes and established controls. The paper describes some practical metrics for ISMS processes review but primarily deals with the metrics for the security category ?Security in development and support processes? from the security control clause ?Information systems acquisition, development and maintenance processes? (ISO/IEC 27001, ISO/IEC 27002). Judged by the authors? research and experience, organizations often concentrate mainly on other security categories (Correct processing in application, Cryptographic controls, Security of system files) from the security control clause ?Information systems acquisition, development and maintenance (en)
|
Title
| - THE PROPOSAL OF SOFTWARE DEVELOPMENT AND ACQUISITION METRICS BASED ON ISO/IEC 27001 STANDARD
- THE PROPOSAL OF SOFTWARE DEVELOPMENT AND ACQUISITION METRICS BASED ON ISO/IEC 27001 STANDARD (en)
|
skos:prefLabel
| - THE PROPOSAL OF SOFTWARE DEVELOPMENT AND ACQUISITION METRICS BASED ON ISO/IEC 27001 STANDARD
- THE PROPOSAL OF SOFTWARE DEVELOPMENT AND ACQUISITION METRICS BASED ON ISO/IEC 27001 STANDARD (en)
|
skos:notation
| - RIV/60076658:12510/09:00011121!RIV10-MSM-12510___
|
http://linked.open...avai/riv/aktivita
| |
http://linked.open...avai/riv/aktivity
| |
http://linked.open...iv/cisloPeriodika
| |
http://linked.open...vai/riv/dodaniDat
| |
http://linked.open...aciTvurceVysledku
| |
http://linked.open.../riv/druhVysledku
| |
http://linked.open...iv/duvernostUdaju
| |
http://linked.open...titaPredkladatele
| |
http://linked.open...dnocenehoVysledku
| |
http://linked.open...ai/riv/idVysledku
| - RIV/60076658:12510/09:00011121
|
http://linked.open...riv/jazykVysledku
| |
http://linked.open.../riv/klicovaSlova
| - security metrics; information security; ISO 27001; ISMS; software development (en)
|
http://linked.open.../riv/klicoveSlovo
| |
http://linked.open...odStatuVydavatele
| |
http://linked.open...ontrolniKodProRIV
| |
http://linked.open...i/riv/nazevZdroje
| - Acta Universitatis Bohemiae Meridionales : vědecký časopis pro ekonomiku, řízení a obchod
|
http://linked.open...in/vavai/riv/obor
| |
http://linked.open...ichTvurcuVysledku
| |
http://linked.open...cetTvurcuVysledku
| |
http://linked.open...UplatneniVysledku
| |
http://linked.open...v/svazekPeriodika
| |
http://linked.open...iv/tvurceVysledku
| - Beránek, Ladislav
- Remeš, Radim
|
issn
| |
number of pages
| |
http://localhost/t...ganizacniJednotka
| |
is http://linked.open...avai/riv/vysledek
of | |