RISK - A RISK-ORIENTED APPROACH TO INFORMATION SECURITY AUDIT

Authors

  • М.М. Askarova KSTU named of I.Razzakov Author
  • T. D. Erkinbaev KSTU named of I.Razzakov Author
  • L. K. Abdieva KSTU named of I.Razzakov Author
  • А.М. Osmonkanov KSTU named of I.Razzakov Author

Keywords:

Security audit, security threats, risks, information protection, risk-based approach, business processes, recommendations, fraud, trade secrets, organization sustainability

Abstract

The article discusses the importance of security auditing in modern organizations and its impact on effective risk management and information protection. The audit is considered as a tool for analyzing external and internal security threats, identifying regulatory and legal risks, preventing fraud and protecting trade secrets. Particular attention is paid to a risk-based approach, business process analysis and development of recommendations for improving security.

References

1. Толчинская М.Н. Риск-ориентированный подход в организации службы внутреннего аудита // Фундаментальные исследования. – 2015. – № 10-3. – С. 640-644;

2. Шаханова М.В. Современные технологии информационной безопасности: Учебнометодический комплекс. ДВФУ, 2013. 180 с.

3. Калужин Е.А., Монастырский Д.С. Алгоритм выбора средств информационной безопасности при проектировании системы защиты информации // Modern Sciencs, 2016. № 11. C. 24-27.

4. Bjorn A.G. CORAS, A Platform for Risk Analysis on Security Critical Systems - Modelbased Risk Analysis Analysis Targeting Security, 2002.

Downloads

Published

2026-03-19

Issue

Vol. 50 No. 4 (2022): СОВРЕМЕННЫЕ ПРОБЛЕМЫ МЕХАНИКИ

Section

Статьи

Categories