Научная электронная библиотека ULRICH'S Periodicals Directory

Сибирский государственный университет
науки и технологий имени академика М.Ф. Решетнева

Сибирский аэрокосмический журнал
ISSN 2712-8970 (Print) ISSN 2782-5760 (on-line)

Сведения об образовательной организации

UDK 004.056
INFORMATION RISK MANAGEMENT
I. Z. Krasnov, O. I. Karelin
[1] Siberian Federal University 79, Svobodny prosp., Krasnoyarsk, 660041, Russian Federation [2] Siberian State Aerospace University named after academician M. F. Reshetnev 31, Krasnoyarsky Rabochy Av., Krasnoyarsk, 660014, Russian Federation E-mail: bk_24@bk.ru, karelin@sibsau.ru
The article is devoted to information risk management. The authors gives an assess and distribution technique of in-formation risks. Levels of information security is considered in the context of information asset relevance for organiza-tion objectives and granularity of bushiness process maps. Particular attention is paid to the distribution of responsibil-ity for evaluating and recording the information risk. A multi-level evaluation methodology for end-risks the organiza-tion with the size and characteristics of the business is offered. An information system security analysis is the first and one of the most important steps of stable infrastructure constructing.
information security, information risk, multi-level risk assessment, stability of the IT company, informa-tion security system model.
References

1. Stupina A. A., Zolotarev A. V. [Comparative analysis of methods for solving the problem of security assessment STI-automated systems]. Vestnik SibGAU, 2013, vol. 44, no. 4, p. 56–60. (In Russ.)

2. Antamoshkin O. A., Puzanova G. A., Ontuzhev V. V. [Features of designing an automated peer review system information security organizations]. Vestnik SibGAU, 2013, vol. 49, no. 3, p. 4–9. (In Russ.)

3. Repin V. Biznes-protsessy. Modelirovaniye, vne-dreniye, upravleniye [Business Processes. Modeling, im-plementation, management]. Moscow, Mann, Ivanov and Ferber Pudl., 2013, 512 p.

4. Baldin K. V. Risk-menedzhment [Risk manage-ment]. Moscow, Eksmo Publ., 2006, 368 p.

5. Andrianov V. V., Marshmallows S. L., Golovanov V. B., Golduev N. A., Kurylo A. P. Obespecheniye infor-matsionnoy bezopasnosti biznesa [Providing business information security]. Moscow, Alpina Publ., 2011, 392 p.

6. Bondar I. V. [The method of constructing models of information security threats for automated systems]. Vestnik SibGAU, 2012, vol. 43, no. 3, p. 7–10. (In Russ.)

7. Astakhov A. M. Iskusstvo upravleniya informat-sionnymi riskami [The art of managing information risk]. Moscow, DMK Press Publ., 2010, 312 p.


Krasnov Igor Zarjevich – associate professor of Institute of Space and Information Technologies, Siberian Federal University. E-mail: bk_24@bk.ru

Karelin Oleg Igorevich – Candidate of Economics, associate professor of the Department of Finance and credits, Siberian State Aerospace University named after academician M. F. Reshetnev. E-mail: karelin@sibsau.ru