Information security measurement infrastructure for KPI visualization
2012
In last decade information security standards became well documented starting with ISO 27001:2005 which defines requirements for a organisation's Information Security Management System (ISMS). Other standards such as ISO 27004:2009, 27003, and 27005 are published later too. Organisational ISMS can be certifies for ISO 27001:2005 certificate and it adopts Plan-Do-Check-Act (PDCA) life cycle of constant system improvements. To be able to improve operations and information security ISO 27004:2009 standard has to be used to create useful Key Performance Indicators (KPI) in order to achieve constant improvements of the ISMS. During phase of maintenance every system needs infrastructure to collect data, analyse data and then to create KPI for constant improvements. In this paper is presented information security measurement infrastructure for KPI visualisation based on practical experience from production system in financial surrounding.
Keywords:
- Knowledge management
- Process management
- Information security
- Information security standards
- Standard of Good Practice
- Computer science
- Information security management system
- Data mining
- Information security management
- Certified Information Security Manager
- Certified Information Systems Security Professional
- ITIL security management
- Security service
- Computer security
- Correction
- Source
- Cite
- Save
- Machine Reading By IdeaReader
12
References
8
Citations
NaN
KQI