Abstract
The article outlines the concept of maintaining the required security level of the information system in the organization (SIO) through appropriate control of the security configurations of the security system. The security system (SS) model was proposed and its basic elements characterized to maintain the current security level of the information resources. The desired current security feature of the SIO shall be obtained by generating appropriate security technical and organizational configurations from the set of permissible solutions. The proposed concept, which takes into account the impact of not only basic security elements of the information resources (e.g. types of resources, security attributes, risks, vulnerability), but also changes in the working conditions of the information system and security system as well as the entire security and quality management environment of the organization, constitutes own proposal of the authors.
Highlights
The rapid development of security systems for organizations observed over the last few years significantly goes ahead present knowledge of design and construction of efficient security systems
The security system efficiency is understood as a current positive assessment of the possible functioning of the security attributes assigned to each asset of the organization, belonging to the present A(t) set of the information resources of the information system (IS), in a secure manner, regardless of the emergency situations in its environment
According to the conditions of the information society, it is necessary for each security system to have the following properties: 1) continuous readiness, i.e. maintenance of the required level of current functionality, reliability and efficiency in terms of the maintenance of the desired security level, regardless of the emergency situations that may occur, 2) high operability in terms of controlling the performance properties, understood as timely and definite reaction to all emergency situations, and making steering decisions to restore efficiency of the system with respect to the maintenance of the required security level within the required time limit
Summary
The rapid development of security systems for organizations observed over the last few years significantly goes ahead present knowledge of design and construction of efficient security systems. The security system efficiency is understood as a current positive assessment of the possible functioning of the security attributes assigned to each asset of the organization, belonging to the present A(t) set of the information resources of the information system (IS), in a secure manner, regardless of the emergency situations in its environment. The assessment shall be always positive, since the IS must ensure continuity of functions requested by the users of various information systems - services and/or business processes. It means that there should always be a possibility of safe processing of the information collected in the IS of the organization. The diagram of the organization from the point of view of controlling current performance characteristics is in figure 1 [1,2,3]
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
