Article | REF: SE2500 V4

Information security and safety for risk management – Application to Information System

Author: Frédérique VALLÉE

Publication date: February 10, 2024

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

Français

2. Information system methodologies

After recalling the challenges of cybersecurity, taking stock of the current situation and giving numerous examples of attacks, this paragraph presents the different methods that can be used to build less vulnerable information systems, and distinguishes between analysis-based and process-based methods. For information systems, the general aim of IT security is to protect the company's IT assets [H 5 510]

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors

+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year

From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects

This article is included in

Safety and risk management

This offer includes:

Knowledge Base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

Practical Path

Operational and didactic, to guarantee the acquisition of transversal skills

Doc & Quiz

Interactive articles with quizzes, for constructive reading

Subscribe now!

Ongoing reading
Information system methodologies

Previous
page IT risks

Risk reduction actions

Bibliography

(1) - FOVINO (I.), MASERA (M.), DE CIAN (A.) - Integrating cyber attacks within fault trees. Reliability Engineering and System Safety, - Elsevier, p. 94 (2009).
(2) - STEINER (M.), LIGGESMEYER (P.) - Combination of safety and security analysis....

Websites

CLUSIF – French information systems security club

http://www.clusif.asso.fr

AFAI – French IT audit and consulting association

http://www.afai.asso.fr

ANSSI – Agence nationale de la sécurité des systèmes d'information (French...

Standards and norms

Risk management – Vocabulary – Guidelines for use in standards - ISO 73 Guide ISO 7312-09 -
Information Technology – Safety technology – Information security management systems –Requirements - ISO CEI 27001-22 -
Information Technology – Safety technology – Code of practice for information security management - ISO CEI 27002-22 -
Information Technology – Safety technology – Guidelines for...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors

+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year

From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects