RISK MANAGEMENT - CYBER SECURITY

Branka Mijić

Abstract


We are witnessing the great impact of the Internet and information technology on human life. Today, we can say with certainty that business entities and individuals are becoming more and more exposed to various forms of cyber-attacks and crime. The information and technology carry certain challenges and risks. Cyber-attacks can have devastating consequences and a huge impact on government, business subjects, their employees, customers, but also third parties. Such attacks and threats are among the biggest risks facing the corporate sector in the world today, and different modes of Internet and information technology security are used to cover risks. Risk management is a moral and legal obligation of every organization and society. Risk management gives the organization a clear view of the risks and the ability to act proactively to protect the resources and operations of the organization. Cybersecurity has been something that has finally started to be talked about and paid more attention in recent years, as we are witnessing an increasing number of hacking attacks, which represent one of the biggest challenges for the management of most prominent global companies.

Keywords


Cybersecurity; cybercrime; cyberrisk; risk management

Full Text:

PDF (Serbian)

References


Allianz Global Corporate &Security (2015). A Guide to Cyber Risk, Managing the Impact of Increasing Interconnectivity, Editor: Greg Dobie (greg.dobie@allianz.com). https://www.agcs.allianz.com/news-and-insights/reports/a-guide-to-cyber-risk.html

Armerding, T. (2015). Why criminals pick on small business. http://www.csoonline.com/article/2866911/cyber-attacks-espionage/ why-criminals-pick-on-small-business.html

Carol A. Siegel, T. R., Serritella, S., Serritella, P. (2002). Information Security Management Practices, Cyber-Risk Management:Technical and Insurance Controls for Enterprise-Level Security, EBSCO,

Courtney, J. F., Haynes, J.D. , Paradice, B. D. (2005). Inquiring Organizations: Moving from Knowledge Management to Wisdom. England: Idea Group Inc (IGI),

CROForum (2014). „Cyber Resilience-The cyber risk challenge and the role of insurance", KPMG Advisory N.V. http://www.munichre.com/site/corporate/get/ ocuments_E-558890045/ mr/assetpool. shared/Documents/0_Corporate%20Website/1_The%20Group/Emerging-Risks/CRO-Forum-cyber -risk-paper -2014-12.pdf

Deloitte. (2016). Information Security Survey Report 2014,

Ernst & Young. EY’s Global İnformation security Survey Report 2015: Creating trust in the digital world. (2016) http://www.ey.com/Publication/vwLUAssets/ey-globalinformation-security-survey-2015/$FILE/ey-globalinformation-security-survey-2015.pdf

European Cybercrime Centre (EC3) - Europol (2014). „The Internet Organised Crime Threat Assesment (iOCTA) ". file:///Users/Air/ Downloads/europol_iocta_web.pdf

Humphreys, E. (2008). Information Security Technical Report, Elsevier, “Information Security Management Standards: Compliance, Governance and Risk Management”,

Martinez-Moyano, I. J. (2006). Modeling the Emergence of Insider Threat

Vulnerabilities. Proceedings of the 2006 Winter Simulation Conference,

Miller, K. L. (2016). About “Reasonable Cybersecurity: A Proactive and Adaptive Approach. The Florida Bar Journal/September/October, vol. 90,

Mueller, R., S.(2012). FBI Director speech on RSA Cyber Security Conference, San Fracisko, CA. http://www.fbi.gov/news/speeches/combating-threats-in-the-cyber-world-outsmarting-terrorists-hackers-and-spies

Refsdal, A., Solhaug, B., Stølen, K. (2015). Cyber-Risk Management. SpringerBriefs in Computer Science,

Saint-Germain, R. (2005). Information Security Management Best Practice Based on ISO/IEC 17799.The Information Management Journal, vol. 39,

Sutton, D. (2010). Information Risk Management a Practitioner’s Guide. Bcs the Chartered Institute for IT,

UN General Assembly. (2010). A/65/201 Report of the Group of Governmental Experts on Developments in the Field of Information and Telecommunications in the Context of International Security.

Vural, Y., Sagıroglu, S. (2008). A Review on Enterprise Information Security and Standarts. J. Fac. Eng. Arch., Gazi Univ., Vol. 23,

Yildirim, E. Y. (2016). Advances in Human Factors in Cybersecurity. The Importance of Information Security Awareness for the Success of Business Enterprises, vol.501, Springer, USA,

Yildirim, E. Y. (2017). The importance of risk management in information security. International Journal of Advances in Electronics and Computer Science, Vol. 4, Issue 1,

Yildirim, E. Y., Akalp, G., Aytac, S., Bayram, N. (2011). Factors Influencing Information Security Management in Small and Medium-sized Enterprises:A Case Study from Turkey. International Journal of Information Management, Elsevier,

Young, C. (2010). Metrics and Methods for Security Risk Management. Boston, Yngres,

Young, C. (2014). The science and technology of counterterrorism; measuring physical and electronic security risk.


Refbacks

  • There are currently no refbacks.