Title :
An optimization model for the management of security risks in banking companies
Author :
Faisst, Ulrich ; Prokein, Oliver
Author_Institution :
Dept. of Inf. Syst. & Financial Eng., Augsburg Bus. Sch. Univ., Germany
Abstract :
The increasing importance of information and communication technologies (ICT), new regulatory obligations (e.g. Basel II) and growing external risks (e.g. hacker attacks) put security risks in the management focus of banking companies. The management has to decide whether to accept expected losses or to invest in technical security mechanisms in order to decrease the frequency of events or to invest in insurance policies in order to lower the severity of events. This paper contributes to the development of an optimization model that aims to determine the optimal amount to be invested in technical security mechanisms and insurance policies. Furthermore the model considers budget and risk limits as constraints and is supposed to help practitioners in controlling security risks.
Keywords :
DP management; bank data processing; optimisation; risk management; security of data; banking companies; information and communication technologies; optimization model; regulatory obligations; security risk management; Banking; Communication system security; Companies; Costs; Data security; Information security; Insurance; Investments; Protection; Risk management;
Conference_Titel :
E-Commerce Technology, 2005. CEC 2005. Seventh IEEE International Conference on
Print_ISBN :
0-7695-2277-7
DOI :
10.1109/ICECT.2005.21
