To obtain access to full text of journal and articles you must register!
- Article name
- The question of increasing the IT-Security level for credit institutions in accordance with the requirements of STO BR IBBS
- Authors
- Nesteruk Ph. G., , 08p@mail.ru, Institution of the Russian Academy of Sciences St.-Petersburg Institute for Informatics and Automation RAS, Russia
Livshits I. I., , Livshitz.il@yandex.ru, LLC "GasInformService", St.-Petersburg, Russia
Rakhimov M. N., , themarat@gmail.com, LLC "GasInformService", St.-Petersburg, Russia
- Keywords
- audit / credit institutions / information security / information security management system / risk management / threat / vulnerabilities / standard
- Year
- 2015 Issue 4 Pages 52 - 58
- Code EDN
- Code DOI
- Abstract
- The publication deals with some methodological and practical aspects of conducting audits for credit institutions of the banking system in the Russian Federation (BS RF) in accordance with the STO BR IBBS standard requirements (version 2014). Noted that in the evaluation process (or self-assessment) for credit institution BS RF can generate numerical indicators of the level of information security (IT-Security) with the required frequency. In addition, the basis of numerical indicators formation of possible planning strategic (tactical) level improvements and identify areas that require priority changes. An important factor is the possibility of modeling the priority of the change in the selected areas in order to provide the best performance (maximize) the M1 - M34 metrics with minimal expenses (both organizational and/or technical). The proposed approach allows respond the modern IT-Security threats, to improve the IT-Security assessment process (self-assessment) and providing increasing confidence as a whole to the activity of credit institutions in the Russian Federation.
- Text
- To obtain access to full text of journal and articles you must register!
- Buy
