DocumentCode :
2665052
Title :
Generalized risk assessment index for information systems auditing
Author :
Peto, David
Author_Institution :
Corvinus Univ. of Budapest
fYear :
0
fDate :
0-0 0
Firstpage :
97
Lastpage :
102
Abstract :
This paper introduces a comprehensive index for the assessment of information risks in IT auditing. Although there have been numerous attempts to create risk measurement indices in the past, these have been concentrating on the more precise estimation of threats and vulnerabilities. The approach in this case is new: the interactions of the individual risk factors are taken into account. A numerical index has been created that calculates the simultaneous effects of the risks identified using the COBIT methodology. The functioning of the index has been verified with statistical analysis. The use of the index allows the enhancement of management decisions on IT-related asset allocation
Keywords :
DP management; auditing; information systems; risk management; statistical analysis; COBIT methodology; IT-related asset allocation; generalized risk assessment index; information system auditing; risk factor; statistical analysis; Asset management; Capability maturity model; ISO standards; Information systems; Information technology; Resource management; Risk management; Software tools; Statistical analysis; Usability;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Information Technology Interfaces, 2006. 28th International Conference on
Conference_Location :
Cavtat/Dubrovnik
ISSN :
1330-1012
Print_ISBN :
953-7138-05-4
Type :
conf
DOI :
10.1109/ITI.2006.1708459
Filename :
1708459
Link To Document :
بازگشت