Ahmad, Rabiah (2012) An Integrated Approach in Risk Management Process for Identifying Information Security Threats using Medical Research Design. Journal of Information Assurance and Security. ISSN 1554-1010
![[img]](http://eprints.utem.edu.my/style/images/fileicons/text.png) |
Text
JIASPaper_181.PDF Restricted to Registered users only Download (253kB) |
Abstract
In this paper, we attempt to introduce a new method for performing risk analysis studies by effectively adopting and adapting medical research design namely a prospective cohort study based survival analysis approach into risk management process framework. Under survival analysis approach, a method which is known as Cox Proportional Hazards (PH) Model will be applied in order to identify potential information security threats. The risk management process in this research will be based on Australian/New Zealand Standard for Risk Management (AS/NZS ISO 31000:2009). AS/NZS ISO 31000:2009 provides a sequencing of the core part of the risk management process namely establishing the context, risk identification, risk analysis, risk evaluation and risk treatment. Moreover, it seems that the integration of risk management process with medical approach indeed brings very useful new insights. Thus, the contribution of the paper will be introducing a new method for performing a risk analysis studies in information security domain.
| Item Type: | Article |
|---|---|
| Uncontrolled Keywords: | Risk Management Process, Prospective Cohort Studies, Survival Analysis, Information Security Risk Analysis, Information Security Threats. |
| Subjects: | Z Bibliography. Library Science. Information Resources > ZA Information resources > ZA4050 Electronic information resources |
| Depositing User: | Prof Madya Dr. Rabiah Ahmad |
| Date Deposited: | 29 May 2012 03:06 |
| Last Modified: | 30 Sep 2021 15:39 |
| URI: | http://eprints.utem.edu.my/id/eprint/3291 |
| Statistic Details: | View Download Statistic |
Actions (login required)
 |
View Item |