Journals
Books
Monographies Textbooks
Submit manuscript
Home / Journals / Problems of risk management in the technosphere / Volume 2015 Issue 4 / ANALYSIS LEGAL NORMS FOR THE TASK OF COSTRUCTION OF MODEL AND METHOD OF ESTMATION OF EFFICIENCY OF information security management system IN THE ORGANIZATIONS OF EMERCOM OF RUSSIA
ANALYSIS LEGAL NORMS FOR THE TASK OF COSTRUCTION OF MODEL AND METHOD OF ESTMATION OF EFFICIENCY OF information security management system IN THE ORGANIZATIONS OF EMERCOM OF RUSSIA
Submit manuscript
To cite
Citations:

ANALYSIS LEGAL NORMS FOR THE TASK OF COSTRUCTION OF MODEL AND METHOD OF ESTMATION OF EFFICIENCY OF INFORMATION SECURITY MANAGEMENT SYSTEM IN THE ORGANIZATIONS OF EMERCOM OF RUSSIA
Eremenko S P 1
Khitov S B 2
Mozhaev O A 3
Authors:
1.  Saint-Petersburg university of State fire service of EMERCOM of Russia

2.  Saint-Petersburg university of State fire service of EMERCOM of Russia

3.  Institute for testing and certification of armaments and military equipment

Type:
Article
Pages:
from 101 to 106
Status:
Published
Received:
12.12.2015
Accepted:
20.12.2015
Published:
25.12.2015
Language:
Russian
Keywords:
information, information system, information security, information security management system, legal regulatory act, standards ISO/IEC, information security management system efficiency assessment
Abstract and keywords
Abstract (English):
The article is dedicated the basic concepts of information security, basic directions of construction and development of information security management system in the organization of Emercom of Russia. The analysis legal norms and standards for the task of construction model and method of estimation of efficiency of ISMS are considered.

Keywords:
information, information system, information security, information security management system, legal regulatory act, standards ISO/IEC, information security management system efficiency assessment
References

1. Puchkov V.A. MChS-2030: sovremennye tehnologi gosudarstvennogo upravleniya v sfere bezopasnosti zhiznedeyatel'nosti naseleniya: Strategiya razvitiya MChS Rossii na period do 2030 goda // Seminar s rukovodyaschim sostavom MChS Rossii 2015 g. URL: http://www.mchs.gov.ru/upload/site1/document_file/0huAWJ42XI.pdf (data obrascheniya: 12.11.2015).

2. ISO/IEC 27000:2013. Information security management systems - Overview and vocabulary - Sistema menedzhmenta informacionnoy bezopasnosti. Obschiy obzor i terminologiya. M.: Standartinform, 2013. 25 s.

3. ISO/IEC 27001:2013. Information security management systems - Requirements -Sistema menedzhmenta informacionnoy bezopasnosti. Trebovaniya. M.: Standartinform, 2013. 23 s.

4. Vlasov S.V. Osnovnye principy dal'neyshego razvitiya sistemy svyazi MChS Rossii v sovremennyh usloviyah // Informacionnye tehnologii, svyaz' i zaschita informacii MChS Rossii - 2015. 2015. Ch. 1. S. 4-5.

5. Komlev N.G. Slovar' inostrannyh slov. SPb: Eksmo, 2006. 320 s.

6. Pilipenko V.F. Bezopasnost': teoriya, paradigma, koncepciya, kul'tura: Slovar'-spravochnik. 2-e izd., dop. i pererab. M.: PER SE-Press, 2005.

7. Shago F.N., Zikratov I.A. Metodika optimizacii planirovaniya audita sistemy menedzhmenta informacionnoy bezopasnosti // Nauch.-tehn. vest. inform. tehnol., mehaniki i optiki. 2014. № 2 (90). S. 111-118.

8. GOST R ISO/MEK 27003-2012. Metody i sredstva obespecheniya bezopasnosti. Sistemy menedzhmenta informacionnoy bezopasnosti. Rukovodstvo po realizacii sistemy menedzhmenta informacionnoy bezopasnosti. M.: Gosstandart Rossii, 2014. 95 s.

9. Shago F.N., Zikratov I.A. Optimizaciya meropriyatiy audita sistemy menedzhmenta informacionnoy bezopasnosti // Nauch.-tehn. zhurn. «Informaciya i kosmos». 2014. № 2. S. 59-65.

10. Shago F.N. Metodika ocenki effektivnosti sistemy menedzhmenta informacionnoy bezopasnosti po vremeni reakcii sistemy na incidenty informacionnoy bezopasnosti // Nauch.-tehn. vest. inform. tehnol., mehaniki i optiki. 2014. № 4 (92). S. 115-124.

11. HabrHabr - Standart BS 7799. Ch. 12012 g. URL:http://habrahabr.ru (data obrascheniya: 30.02.2015).

12. NIST SP 800 - 137 Information Security Continuous Monitoring for Federal Information Systems and Organizations. 2011 g. URL: http://csrc.nist.gov/publications/nistpubs/ 800-137/SP800-137-Final.pdf. (data obrascheniya: 12.11.2015).

© journals.igps.ru
Support Powered by Editorum,  Instructions
Login or Create
* Forgot password?