Traditional information security risk analysis is quantitative and qualitative. The chief risk offi cer, nathan, put it plainly to ceo tom. This is to be done by analyzing and mapping what the main sources of risk in businesses in the ictindustry are. In the risk determination phase, relevant threat probabilities are merged with the. Use risk management techniques to identify and prioritize risk factors for information assets. Analysis of financial risk prevention in mergers and. Information security is often considered to consist of confidentiality, integrity, availability, and. Information security professionals know and understand that nothing ever runs smoothly for. It is obviously necessary to identify the information to protect, its value, and the elements of the system hardware, software, networks, processes, people that supports. Addressing the security risks of mergers and acquisitions.
Peltier is the author of information security risk analysis 4. Information security risk analysis 3rd edition thomas. Facilitated risk analysis assessment process fraap peltier, 2005 or the. C ompanies are constantly seeking opportunities to grow and expand their business, increase competitive edge and drive market value. A risk management model for merger and acquisition article pdf available in international journal of engineering business management 32 may 2011 with 2,947 reads how we measure reads. Combine to eliminate duplicates and move forward with only unique risks. A comparative study on information security risk analysis. Sw security revenue synergy domain parking revenue synergy bandwidth billing revenue synergy high leverage bandwidth procurement convert operating leases to capital leases rationalize. Presents and explains the key components of risk management. Pdf a risk management model for merger and acquisition. New capability to supplier information security risk analysis thomas r peltier.
Non nancial risk assessment in mergers, acquisitions and. Regardless of how similar two companies may seem when they shake hands, its a complicated and challenging process to assure a meaningful union. Information security risk analysis, peltier, thomas r. Ahp and fuzzy comprehensive method article pdf available march 2014 with 23,814 reads how we measure reads. This research work targets information security risk analysis methods used currently to analyze information security risks. A prime example of cyber security risk with such a transaction comes from the recent acquisition of yahoo inc. Pdf information security risk analysis methods and. A business practice approach volume 39 paper 15 although these methodologies differ in their composition, order, and depth of activities, they generally follow a threestage pattern.
Information security risk analysis, third edition demonstrates how to identify threats your company faces and then determine if those threats pose a real risk to your organization. Evaluating information technology it integration risk. Information security risk analysis methods and research trends. The complete manual of policies and procedures for. To say that cybersecurity presents complex challenges is an understatement. In september 2016 yahoo announced that a recent investigation by the. Define risk management and its role in an organization. When those main sources are known, hopefully the identi cation process of. Risk factor frequency initiative sensitivity this process should be applied to complex initiatives with high business value customer loss. The role of information security in a mergeracquisition.
Identif ying, analyzing, and evaluating cyber risks information securit y forum isf steve durbin, managing director, information securityforum ltd. Information security risk management semantic scholar. For many, this encompasses merging with, or acquiring, other companies. Information security risk analysis peltier, thomas r. Asses risk based on the likelihood of adverse events and the effect on information assets when events occur.
Information security risk analysis kindle edition by peltier, thomas r download it once and read it on your kindle device, pc, phones or tablets. This is an often overlooked portion of a merger or acquisition, but unclaimed property noncompliance can cost your organization millions of dollars in fines and. Information security risk management provides an approach for measuring the security through risk assessment, risk mitigation, and risk evaluation. Peltiers most popular book is information security risk analysis. Itrelated interorganizational risk can be classified into three broad categories.
Strategic analysis for more profitable acquisitions. A beta for an individual security is an index of its risk expressed as its volatility of return in relation to that of a market portfolio. Security considerations in the mergeracquisition process. Providing access to more than 350 pages of helpful ancillary materials, this volume. In peltier, 2001 we find a good collection of qualitative risk assessment. There are four different security risk analysis methods analyzed, and the way in. Conference paper pdf available january 2008 with 771 reads. Identify potential risks that could impact your mergeracquisition and classify each risk into categories. Peltier has 19 books on goodreads with 226 ratings. Information security risk analysis becomes an increasingly essential component of organizations operations. System characterization threat assessment vulnerability analysis impact analysis risk determination figure 2. Identif ying, analyzing, and evaluating cyber risks.
179 1254 18 1438 767 172 1209 745 732 1398 194 102 219 1374 565 914 875 1133 206 57 930 1043 18 215 948 1 362 589 1424 476