• Home

  • Business

  • The importance of information security management in crisis prevention in the company
8
dr Sławomir Wawak, 2010 dr Sławomir Wawak, 2010 The importance of information The importance of information security management in crisis security management in crisis prevention in the company prevention in the company

The importance of information security management in crisis prevention in the company

  • Upload
    wawaks

  • View
    1.585

  • Download
    1

Tags:

Embed Size (px)

DESCRIPTION

Presentation from conference in Karvina, Czech Republic, May 2010

Citation preview

Page 1: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

The importance of information The importance of information security management in crisis security management in crisis

prevention in the companyprevention in the company

Page 2: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

22

Information security management systemInformation security management systempart of management system, based on a business risk approach, to establish, implement, operate, monitor, review, maintain and improve information security

helps to improve managementinformation system (MIS)

compatible with ISO 9001

provides tools helpful incrises prevention

Riskanalysis

Controlsdevelopment

Feedbackand

analyses

Workperformance

Improvement

Scope and policydefinition

Information securitymanagement system

Page 3: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

33

ISMS control areasISMS control areas

Information systems deve-lopment and maintenance

Communication andoperations management

Business continuitymanagement

Human resourcessecurity

Physical and environmental security

Compliance

Assets management Access control

Organization ofinformation security

Security policy

Strategic level

Operational level

Organizational areas Technical/computer areas

Source: Saint-Germain R., Information Security Management Best Practice Based on ISO/IEC 17799, “The Information Management Journal” 2005, July/August

Page 4: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

44

Tools of ISMS in crises preventionTools of ISMS in crises preventionmanagement review

gathering of information, comparisons and discussion provides better understanding of company situationenables more accurate problems detection

corrective actionsnon-compliance and incidents causes removalreduces adverse effects of incidents

preventive actionsprevents incidents and non-compliance

Page 5: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

55

Tools of ISMS in crises preventionTools of ISMS in crises preventionincident management

provides information on incidents and problemsincreases workers’ awareness an sensitivity to problems

risk assessmentprovides information about risksenables organisation to risk mitigation

risk treatment planscontain procedures for dealing with crisis situationallow to reduce impact of crisis triggers

Page 6: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

66

Tools of ISMS in crises preventionTools of ISMS in crises preventioncompliance metrics

allow monitoring of the system allow early detection of problems

internal auditcomprehensive monitoring toolidentifies problems in the systemidentifies opportunities to improve information system

and its security

Page 7: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

77

SummarySummaryISMS supports crisis preventionthrough:

improvement of information systemeffective monitoring systemsystematic risk assessmentsimple but powerful management toolstop management engagement

Page 8: The importance of information security management in crisis prevention in the company

dr Sławomir Wawak, 2010dr Sławomir Wawak, 2010

88

Encyclopedia of ManagementEncyclopedia of ManagementGreat management articles databaseOver 3000 articles in Polish, over 180 in English

100% free GNU FDL licence

http://mfiles.pl


Suicide & Crisis Prevention

Suicide & Crisis Prevention

Documents
“CRE Mechanisms and their Importance for Infection Prevention ”

“CRE Mechanisms and their Importance for Infection Prevention ”

Documents
Crisis Prevention, Management and Resolution Preparedness of … · 2014. 9. 19. · crisis on the NSAs’ approach towards crisis prevention, management and resolution as well as

Crisis Prevention, Management and Resolution Preparedness of … · 2014. 9. 19. · crisis on the NSAs’ approach towards crisis prevention, management and resolution as well as

Documents
Sonoma State University Prevention & the Healthcare Crisis 2004

Sonoma State University Prevention & the Healthcare Crisis 2004

Documents
Crisis Prevention and Management - PCC

Crisis Prevention and Management - PCC

Documents
Suicide Prevention and Crisis Intervention with Veterans Crisis Line Overview.pdf · Suicide Prevention and Crisis Intervention with Veterans Caitlin Thompson, Ph.D. Clinical Care

Suicide Prevention and Crisis Intervention with Veterans Crisis Line Overview.pdf · Suicide Prevention and Crisis Intervention with Veterans Caitlin Thompson, Ph.D. Clinical Care

Documents
Crisis Intervention and Prevention

Crisis Intervention and Prevention

Documents
Health Starts in Our Communities: The Prevention Crisis

Health Starts in Our Communities: The Prevention Crisis

Health & Medicine
10 Tips for Crisis Prevention

10 Tips for Crisis Prevention

Documents
Real Issues at School - Crisis Prevention Institue

Real Issues at School - Crisis Prevention Institue

Documents
Crisis prevention and management: What worked in the 2008/09 crisis?

Crisis prevention and management: What worked in the 2008/09 crisis?

Economy & Finance
UNDP's strategy on crisis prevention and recovery

UNDP's strategy on crisis prevention and recovery

Documents
The Crisis Communications Plan and Crisis Prevention F2F - KOM5327.pdf · The Crisis Communications Plan and Crisis Prevention By: ... Crisis communication control center ... and

The Crisis Communications Plan and Crisis Prevention F2F - KOM5327.pdf · The Crisis Communications Plan and Crisis Prevention By: ... Crisis communication control center ... and

Documents
crisis prevention and recovery thematic trust fund

crisis prevention and recovery thematic trust fund

Documents
Crisis Prevention Institute (CPI) Verbal and Physical

Crisis Prevention Institute (CPI) Verbal and Physical

Documents
Financial crisis prevention: A psychological approach from

Financial crisis prevention: A psychological approach from

Documents
Recent Power Crisis - Renewable Energy Importance

Recent Power Crisis - Renewable Energy Importance

Government & Nonprofit
PREPaRE CRISIS PREVENTION AND INTERVENTION ......PREPaRE CRISIS PREVENTION AND INTERVENTION TRAINING CURRICULUM 2015 ANNUAL EVALUATION REPORT Comprehensive efforts addressing crisis

PREPaRE CRISIS PREVENTION AND INTERVENTION ......PREPaRE CRISIS PREVENTION AND INTERVENTION TRAINING CURRICULUM 2015 ANNUAL EVALUATION REPORT Comprehensive efforts addressing crisis

Documents
Avoiding intervention: prospects for sub-crisis conflict prevention

Avoiding intervention: prospects for sub-crisis conflict prevention

Documents
Week 4. Crisis prevention · (cc) Dani Madrid-Morales – 2017 | COM5403 Crisis Communication and Management Week 4. Crisis prevention 6 February 2017

Week 4. Crisis prevention · (cc) Dani Madrid-Morales – 2017 | COM5403 Crisis Communication and Management Week 4. Crisis prevention 6 February 2017

Documents
Crisis Intervention or Emergency Care Crisis Intervention or Emergency Care Deficit- or Problem- Centered Prevention Asset-Centered Protective Prevention

Crisis Intervention or Emergency Care Crisis Intervention or Emergency Care Deficit- or Problem- Centered Prevention Asset-Centered Protective Prevention

Documents
Crisis Prevention, Management and Resolution Preparedness ... · Crisis Prevention, Management and Resolution Preparedness of ... situation in the different jurisdictions with regard

Crisis Prevention, Management and Resolution Preparedness ... · Crisis Prevention, Management and Resolution Preparedness of ... situation in the different jurisdictions with regard

Documents
Peace-Building, Crisis Prevention and Conflict Management

Peace-Building, Crisis Prevention and Conflict Management

Documents
Non Violent Crisis Prevention

Non Violent Crisis Prevention

Documents
When crisis hits! the importance of being prepared

When crisis hits! the importance of being prepared

Business
Prevention vs. Reaction The Importance of Asset Integrity

Prevention vs. Reaction The Importance of Asset Integrity

Documents
POSTGRAD. MED. IMPORTANCE PREVENTION OEDEMA OF THE HAND

POSTGRAD. MED. IMPORTANCE PREVENTION OEDEMA OF THE HAND

Documents
Date: CRISIS PREVENTION PLAN

Date: CRISIS PREVENTION PLAN

Documents
Prevention of Spina Bifida & Anencephaly: The Importance ... · Prevention of Spina Bifida & Anencephaly: The Importance of Folic Acid Fortification of Flour Assessing Effects Worldwide

Prevention of Spina Bifida & Anencephaly: The Importance ... · Prevention of Spina Bifida & Anencephaly: The Importance of Folic Acid Fortification of Flour Assessing Effects Worldwide

Documents
Crisis Prevention – Conflict Resolution – Peacekeepinglibrary.fes.de/pdf-files/iez/01618.pdf · Crisis Prevention – Conflict Resolution – Peacekeeping Contributions by the

Crisis Prevention – Conflict Resolution – Peacekeepinglibrary.fes.de/pdf-files/iez/01618.pdf · Crisis Prevention – Conflict Resolution – Peacekeeping Contributions by the

Documents