Methodology and software development for auditing information security management systems
Objectives. Classification of information systems (IS) security indicators and the creation of the method of improved software tool based on its results (in comparison with similar software tool developed earlier by the authors) for auditing information security management systems of organizations i...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | Russian |
| Published: |
National Academy of Sciences of Belarus, the United Institute of Informatics Problems
2022-12-01
|
| Series: | Informatika |
| Subjects: | |
| Online Access: | https://inf.grid.by/jour/article/view/1227 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832543429815435264 |
|---|---|
| author | V. A. Boiprav L. L. Utin |
| author_facet | V. A. Boiprav L. L. Utin |
| author_sort | V. A. Boiprav |
| collection | DOAJ |
| description | Objectives. Classification of information systems (IS) security indicators and the creation of the method of improved software tool based on its results (in comparison with similar software tool developed earlier by the authors) for auditing information security management systems of organizations in the Republic of Belarus.Methods. During the development and improvement of the software tool using the method of systeminformation analysis and the approaches to its implementation were identified based on following capabilities: organization of questionnaires of heads of departments and services whose specialists work with IS designed to information processing not classified as state secrets or IS with limited dissemination; assessment of the level of compliance of the organization's IS information protection system with the requirements established by the legislation of the Republic of Belarus and other national regulatory legal acts; systematization of recommendations for improving the level of compliance of the organization's IS protection system with the established requirements.Results. Based on the results of the developed improved software tool approbation, it was found that the use of this tool makes it possible to reduce by 20–30 % the financing of costs for the implementation of the auditing the information security management systems of an organization.Conclusion. The developed improved software tool, compared to analogues, is characterized by reduced cost due to the following properties: ease of launch and configuration; independence from the type of operating system; the possibility of organizing both local and remote access. The developed improved software tool was tested in the branch "Long-Distance Communication Branch" of RUE "Beletelecom". |
| format | Article |
| id | doaj-art-7ab11bf0e1474363add7cbb5a95f094d |
| institution | Kabale University |
| issn | 1816-0301 |
| language | Russian |
| publishDate | 2022-12-01 |
| publisher | National Academy of Sciences of Belarus, the United Institute of Informatics Problems |
| record_format | Article |
| series | Informatika |
| spelling | doaj-art-7ab11bf0e1474363add7cbb5a95f094d2025-02-03T11:40:30ZrusNational Academy of Sciences of Belarus, the United Institute of Informatics ProblemsInformatika1816-03012022-12-01194425210.37661/1816-0301-2022-19-4-42-521020Methodology and software development for auditing information security management systemsV. A. Boiprav0L. L. Utin1National Center for Contemporary Arts of the Republic of BelarusBelarusian State University of Informatics and RadioelectronicsObjectives. Classification of information systems (IS) security indicators and the creation of the method of improved software tool based on its results (in comparison with similar software tool developed earlier by the authors) for auditing information security management systems of organizations in the Republic of Belarus.Methods. During the development and improvement of the software tool using the method of systeminformation analysis and the approaches to its implementation were identified based on following capabilities: organization of questionnaires of heads of departments and services whose specialists work with IS designed to information processing not classified as state secrets or IS with limited dissemination; assessment of the level of compliance of the organization's IS information protection system with the requirements established by the legislation of the Republic of Belarus and other national regulatory legal acts; systematization of recommendations for improving the level of compliance of the organization's IS protection system with the established requirements.Results. Based on the results of the developed improved software tool approbation, it was found that the use of this tool makes it possible to reduce by 20–30 % the financing of costs for the implementation of the auditing the information security management systems of an organization.Conclusion. The developed improved software tool, compared to analogues, is characterized by reduced cost due to the following properties: ease of launch and configuration; independence from the type of operating system; the possibility of organizing both local and remote access. The developed improved software tool was tested in the branch "Long-Distance Communication Branch" of RUE "Beletelecom".https://inf.grid.by/jour/article/view/1227management system auditinformation securityinformation systemsecurity indicatorsoftware tool |
| spellingShingle | V. A. Boiprav L. L. Utin Methodology and software development for auditing information security management systems Informatika management system audit information security information system security indicator software tool |
| title | Methodology and software development for auditing information security management systems |
| title_full | Methodology and software development for auditing information security management systems |
| title_fullStr | Methodology and software development for auditing information security management systems |
| title_full_unstemmed | Methodology and software development for auditing information security management systems |
| title_short | Methodology and software development for auditing information security management systems |
| title_sort | methodology and software development for auditing information security management systems |
| topic | management system audit information security information system security indicator software tool |
| url | https://inf.grid.by/jour/article/view/1227 |
| work_keys_str_mv | AT vaboiprav methodologyandsoftwaredevelopmentforauditinginformationsecuritymanagementsystems AT llutin methodologyandsoftwaredevelopmentforauditinginformationsecuritymanagementsystems |