Current issue
Modern Management Systems
Topics of next issues
Current issue
Archive
About the Journal
Editorial office
International editorial board
Reviewers
Open Access policy
Indexation
Publisher
Journal revenues
For authors
Procedure securing the originality of the publication
Principles of developing a scientific publication
Review procedure
Rules for submitting articles
Fees
For reviewers
Ethical standards
REVIEW PAPER
Risk management as a determinant of cybersecurity
1
Wojskowa Akademia Techniczna, Wydział Cybernetyki
Online publication date: 2019-09-25
Publication date: 2019-09-25
NSZ 2019;14(3):67-80
KEYWORDS
TOPICS
ABSTRACT
The aim of the article is to demonstrate the dependence of security and cyber security on risk and risk management. The article presents the definitions and risk management process defined in the PN EN ISO 27005:2014 Information technology standard – Security technology – Risk management in information security, consisting of context-setting processes, risk assessment, i.e. identification, analysis and risk assessment, risk treatment, information and consultation as well as monitoring and review. In the further part of the article, the author proceeds from the definition of security, cybersecurity, crisis management to strategic, operational and legal documents, presenting the relationship and dependence of risk and risk management with security and cybersecurity and crisis management, as a national security management system, critical infrastructure protec-tion, including ICT systems of cyberspace. The presented relationships indicate undeniably risk management as a determinant of security and cybersecurity
REFERENCES (11)
1.
DOKTRYNA CYBERBEZPIECZEŃSTWA RP, 2015, Kancelaria Prezydenta, Biuro Bezpieczeństwa Narodowego, Warszawa.
2.
KITLER W., 2011, Bezpieczeństwo Narodowe RP. Podstawowe kategorie, uwarunkowania, system, Wydawnictwo Akademii Obrony Narodowej, Warszawa.
3.
NARODOWY PROGRAM OCHRONY INFRASTRUKTURY KRYTYCZNEJ (NPOIK), 2015, Rządowe Centrum Bezpieczeństwa, Warszawa.
4.
PN ISO/EIC 27005:2014 – Technika informatyczna. Zarządzanie ryzykiem w bezpieczeństwie informacji.
5.
Słownik terminów z zakresu bezpieczeństwa narodowego, 2008, Akademia Obrony Narodowej, Warszawa.
6.
STRATEGIA BEZPIECZEŃSTWA NARODOWEGO RP, 2014, Kancelaria Prezydenta, Biuro Bezpieczeństwa Narodowego, Warszawa.
Share
RELATED ARTICLE
| eISSN: | 2719-860X |
| ISSN: | 1896-9380 |
We process personal data collected when visiting the website. The function of obtaining information about users and their behavior is carried out by voluntarily entered information in forms and saving cookies in end devices. Data, including cookies, are used to provide services, improve the user experience and to analyze the traffic in accordance with the Privacy policy. Data are also collected and processed by Google Analytics tool (more).
You can change cookies settings in your browser. Restricted use of cookies in the browser configuration may affect some functionalities of the website.
You can change cookies settings in your browser. Restricted use of cookies in the browser configuration may affect some functionalities of the website.
