International Conference on Eurasian Economies
20-22 September 2022 – Baku - AZERBAIJAN
Paper properties
Paper ID : 2624
Status : Paper published
Language : Turkish
Topic : Finance and Financial Crises
Presenter: Research assistant Aysu Yaşar
Presentation Location : online
Session : 5B Sektörel Analiz
A New Generation Method for Assessing Information Security Risks: OCTAVE Allegro
Bilgi Güvenliği Risklerinin Değerlendirilmesinde Yeni Nesil Yöntem: Octave Allegro
- Dr. Emine Serap Kurt (Trakya University, Türkiye)
- Research assistant Aysu Yaşar (Nişantaşı University, Türkiye)
- Assoc. Prof. Dr. Kenan Terzioğlu (Trakya University, Türkiye)
- Dr. Senem Demirkıran (Trakya University, Türkiye)
Abstract
Information system risk assessment, an essential aspect of information security management, assists organizations in identifying and analyzing critical information system assets and reducing potential risks. Internal control and risk management are two systems that complement each other in controlling an organization's activities. As a result, internal control activities, critical for controlling and managing risks, should be carried out with a risk focus. Institutions should first analyze the risks that may emerge in business processes before evaluating the steps that should be taken to secure their information assets. Many risk assessment methods are complicated and expensive, and qualified professionals should only carry them out. The OCTAVE Allegro method is a comprehensive assessment of an organization's operational risk environment to get better results without requiring considerable risk assessment information. Risk assessment can be completed in a short period and at a low cost using this method, and the effectiveness of internal control can be improved. The study's objective is to give information about the OCTAVE Allegro method, which can help prevent the risks of ensuring information security as information technologies advance and explain the method's application areas.
JEL codes: G32, M40, C01
Kurt, Emine Serap, Yaşar, Aysu, Terzioğlu, Kenan, Demirkıran, Senem (2022). "A New Generation Method for Assessing Information Security Risks: OCTAVE Allegro" in Proceedings of International Conference of Eurasian Economies 2022, pp.208-214, Baku - AZERBAIJAN.
DOI: https://doi.org/10.36880/C14.02624
