The ISO27005 is an international standard that gives recommendation on IT Security Risk Management Methods. In this short paper we outline a criteria framework to analysis 7 of the major IT security risk methodology used. This framework can be used by organizations to select the appropriated methodology to fit their organizations risk posture and risk environment.
6th Mosharaka International Conference on Communications, Propagation, and Electronics (MIC-CPE 2013)
Congress
2013 Global Congress on Communications, Propagation, and Electronics (GC-CPE 2013), 1-3 February 2013, Kenitra, Morocco
Pages
27-32
Topics
Semantics of Security Internet Security
ISSN
2227-331X
DOI
BibTeX
@inproceedings{537CPE2013,
title={A Framework for selecting IT Security Risk Management Methods based on ISO27005},
author={Gunnar Wahlgren, and Khalid Bencherifa, and Stewart Kowalski},
booktitle={2013 Global Congress on Communications, Propagation, and Electronics (GC-CPE 2013)},
year={2013},
pages={27-32},
doi={}},
organization={Mosharaka for Research and Studies}
}