Expert systems for information security management and audit. Implementation phase issues

Auditing of information security constitutes a key part of security operations taken inside organizations. Often information security problems must be addressed as quickly as possible. The purposes of this work are to provide an insight to information security management and suggest some of solutions of developing expert system. This paper discusses the development of an application, which is based on international standards on information security and protection tools. The expert system is accompanied by web-based application module, which serves as an instrument for solving various security-related problems.