Varovanje informacij po standardu SIST ISO/IEC 27001:2013 v organizaciji
delo diplomskega seminarja
Abstract
Varovanje informacij je obsežen projekt, ki ga morajo izvajati organizacije, da preprečijo varnostne incidente. Gre za vodstveno aktivnost, kjer je potrebno zagotoviti finančna sredstva, primerne ljudi in ustrezno varnostno politiko. Velikokrat se temu namenja premalo pozornosti zaradi bodisi premalo denarja bodisi slabega ozaveščanja o pomembnosti. Organizacija lahko vloži veliko denarja v tehnologije za varovanje informacij, ampak brez sodelovanja zaposlenih ne bo v celoti zagotovljeno za varnost. Ti se morajo namreč zavedati pomena informacij in tveganj povezanih z njihovim odtekanjem ali izgubo.
Diplomska naloga obravnava varovanje informacij po standardu SIST ISO/IEC 27001:2013, ki uvaja sistem za upravljanje varovanja informacij (SUVI). Namen sistema je, da s pomočjo 113 kontrol zagotovi zaupnost, neoporečnost in razpoložljivost informacij.
Keywords
informacije;informacijski sistemi;informacijska tehnologija;varnost;varovanje;standardi;
Data
| Language: | Slovenian |
|---|---|
| Year of publishing: | 2014 |
| Typology: | 2.11 - Undergraduate Thesis |
| Organization: | UM EPF - Faculty of Economics and Business |
| Publisher: | [Š. Zorinić] |
| UDC: | 659.2:004(043.2) |
| COBISS: |
11874076
|
| Views: | 3118 |
| Downloads: | 700 |
| Average score: | 0 (0 votes) |
| Metadata: |
|
Other data
| Secondary language: | English |
|---|---|
| Secondary title: | Information security in accordance with the standard SIST ISO/IEC 27001:2013 in organization |
| Secondary abstract: | Ensuring information security is extensive project, which has to be performed by organization to prevent security incidents. It is acitivity of management, where is necessary to provide financial resources, relevant people and security policy. Often it pays insufficient attention due to lack of funding or awareness. The organization may invest a lot of money in technology for information security, but without the participation of employees it will not be fully assured. They should be aware of the importance of information and the risks associated with their leakage or loss. The diploma assignment discusses information security in accordance with the standard SIST ISO/IEC 27001:2013, which establishes a system for information security management (ISMS). The purpose of the system is that ensure confidentialy, integrity and availability of information. |
| Secondary keywords: | information security;standard ISO 27001;ISMS;security policy; |
| URN: | URN:SI:UM: |
| Type (COBISS): | Final seminar paper |
| Thesis comment: | Univ. v Mariboru, Ekonomsko-poslovna fak. |
| Pages: | 32 str. |
| ID: | 8730360 |
Recommended works:
Varovanje informacij po standardu SIST ISO/IEC 27001:2013 v organizaciji
2014,
delo diplomskega seminarja
Zagotavljanje varnosti informacij
2011,
diplomsko delo
Zagotavljanje kakovosti po standardu SIST ISO 9001 v podjetju Beti trikotažne tkanine d.o.o.
1998,
diplomsko delo visokošolskega študija
Projektni informacijski sistem na podlagi ISO standardov
2001,
diplomsko delo univerzitetnega študijskega programa