2. Information system methodologies
This chapter presents the different methods that can be used to build less vulnerable information systems, and differentiates between analysis-based and process-based methods.
2.1 Cybersecurity challenges and objectives
Information systems (IS) play an increasingly important role in business. Information is a strategic resource used in all decision-making processes: financial value, industrial, commercial, marketing or financial know-how, strategic or operational management. The IT resources that manage this information enable the company to improve its competitiveness, but at the same time they pose the problem of maintaining availability (D), integrity ( I ), evidence and confidentiality (C) of exchanged data.
...
The Ultimate Scientific and Technical Reference
This article is included in
Security of information systems
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Information system methodologies
Risk reduction actions
Bibliography
Bibliography
Websites
Federation of Professional Intrusive Testers (FPTI) http://www.fpti.pro/
French Information Systems Security Club (CLUSIF) http://www.clusif.asso.fr
Standards and norms
- Risk management – Vocabulary – Guidelines for use in standards - ISO 73 Guide ISO 73 - 12-09
- Information Technology – Safety technology – Information security management systems –Requirements - ISO CEI 27001 - 10-13
- Information Technology – Safety technology – Code of practice for information security management - ISO CEI 27002 - 09-13
- Information Technology – Safety technology – Guidelines for...
The Ultimate Scientific and Technical Reference
