Proceedings (National Conferences of The Society of Project Management)
2013.Spring
Session ID : 1502
Conference information

1502 A Study of Assurance Level Introduction for Information Security Management : LoA Introduction to CSIRT Deployment
Yuhei KENMOKUOsamu KIKUCHIShigeaki TANIMOTOHiroyuki SatoAtsushi Kanai
Author information
CONFERENCE PROCEEDINGS OPEN ACCESS

Details
Abstract
In recent years, the cybercrime is increasing and construction of the strong information security is required in organizations, such as an enterprise, as a countermeasure against a cybercrime. The activity called CSIRT (Computer Security Incident response Team) to one of them exists. Although CSIRT is effective activity for a cybercrime, still, the deployment is not enough. As this main factor, it is mentioned that CSIRT is high cost structure, that visualization of an effect is insufficient, etc. This paper describes visualization of the high cost structure and the effect which are the subjects of CSIRT from a viewpoint of CSIRT activity deployment. Specifically, LoA (Level of Assurance) to which its attention is paid in the security field is introduced for CSIRT. Thus, proposal of cost reduction and visualization of an effect are performed by performing a level division for CSIRT. Accordingly, a judgment of a management interest is made easy and it contributes to spread and facilitation of CSIRT.
Content from these authors
© 2013 The Society of Project Managemen
Previous article Next article
feedback
Top