Abstract

Author: Jovan Miladinovic

Scienton, Inc.
111 Peter St
Toronto, Ontario M5V 2H1
Canada
+1-416-924-4393

Title: Information Risk Modelling Using Information Security Model™

Abstract: After the security issues were mostly solved on the mainframe platform, distributed computing added enormous amount of new security challenges and standards such as BS7799/ISO17799/ ISO21827 (SSE-CMM). The information technology professionals could not come up with a single approach to define information security space.
This session will present the risk modeling using the Information Security Model™ that will enable information security professionals to create objective, standardized, quantifiable, efficient and repeatable risk assessment; Therefore enabling the development of the defensive and responsive management system and business tailored security strategy. A key goal is to augment complex risk and security conundrum with real life infrastructure security models and measures using simple, understandable, and straightforward Information Security Model™. This new information security and risk model combines, streamlines and visualizes an integration of BS7799/ISO17799, CobiT(R) and SSE-CMM standards with real life information infrastructure to provide security professionals with ability to properly protect the complete info-space.
The presented risk assessment approach using the Information Security Model(TM) maps business and information technology creating proper approach to information governance in support of corporate governance.