New Method for Risk Management in CRM Security Management

In an increasing competitive world, marketing survival can be depended simply on timely new information on customers and market trend. One of the most important strategies in CRM (customer relationship management) is to capture enough information from customers and using this information carefully (Ryals and Knox, 2001; Tinsley, 2002). Of course security of this information is very important in CRM data management (Bryan and Merlin, 2002). Data management is a method for scheduling and controlling data saving, recovering and processing. This activity has been done continually or periodically (Bryan and Merlin, 2002). Security level of this information depends on the security policy of the organization. CRM security policy is the directives and practices for managing, protecting and distributing assets which are included sensitive information, within an organization and its CRM systems. CRM security policy is a high level plan that focuses on the strategic security methodology and is not limited to the guideline, standard or control way and plays a critical role in the defense of CRM systems and network (Barman, 2001; Amanda and Andress, 2000). CRM risk evaluation is a method for increasing the efficiency of CRM security policy. In the manner that security threats and vulnerabilities against CRM is identified by its priority (Greenstein and Feinman, 2000; Bryan and Merlin, 2002). First of all in this article, the importance of risk management in CRM is found out and then the suggested method of security risk management is introduced