Information Security Management is not only Risk Management

Abstract — The paper considers and discusses two closely related concepts and process, namely Risk Management and Security Management. Practically, there is a tendency to consider Risk Management as a plenty process capable to protect information assets. Based on the literature and international standards, the paper gives an overview of all the aspects and activities related to both processes. Risk Management and Security Management are analyzed in order to point out their particularities and similitudes. The paper aims to clarify both concepts focusing on an operational, organizational and conceptual point of view by explaining which are the differences and why these two process can not been conceived or operated separately.

Published in: on 11/04/2010 at 14:35  Leave a Comment  

The URI to TrackBack this entry is:

RSS feed for comments on this post.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: