diplomsko delo
Anja Greif (Author), Aleš Živkovič (Mentor)

Abstract

Pričujoče diplomsko delo predstavlja področji revizije informacijskih sistemov in upravljanja informacijske varnosti po standardu ISO/IEC 27001. Obe področji sta pri tem povezani z relevantno in veljavno slovensko zakonodajo. Glavni namen te naloge je združiti obe področji v enoten in skladen sistem revidiranja informacijske varnosti. Za dosego tega cilja so usklajene zahteve standarda ISO 27001 s standardnim orodjem, tako revizije informacijskih sistemov, kot tudi upravljanja informatike nasploh COBIT 5. V končni fazi pa so izdelana natančna priporočila za revizijo informacijske varnosti, ki jih omogočata standarda ISO/IEC 27002 in ISO/IEC 27007.

Keywords

revizija informacijskih sistemov;sistem za upravljanje informacijske varnosti;revizija informacijske varnosti;ISO standardi;

Data

Language: Slovenian
Year of publishing:
Typology: 2.11 - Undergraduate Thesis
Organization: UM FERI - Faculty of Electrical Engineering and Computer Science
Publisher: [A. Greif]
UDC: 004.775(043.2)
COBISS: 18509846 Link will open in a new window
Views: 1594
Downloads: 246
Average score: 0 (0 votes)
Metadata: JSON JSON-RDF JSON-LD TURTLE N-TRIPLES XML RDFA MICRODATA DC-XML DC-RDF RDF

Other data

Secondary language: English
Secondary title: USING THE ISO 27000 FAMILY OF STANDARDS WHEN PERFORMING IINFORMATION SYSTEM AUDITS
Secondary abstract: The present diploma work presents the fields of information systems audit and management of information security according to standard ISO/IEC 27001. Both areas are linked to the relevant and applicable Slovenian legislation. The main purpose of this diploma work is to unite the two areas into a unified and consistent system of information security auditing. This goal was achieved by aligning the requirements of ISO/IEC 27001 standard with the standard tool for not only performing information systems audit but also management of information technology in general COBIT 5. In the final stage detailed recomendations for information security audit that are made possible by the standards ISO/IEC 27002 and ISO/IEC 27007 are formed.
Secondary keywords: information system audit;information security management system;information security audit;
URN: URN:SI:UM:
Type (COBISS): Bachelor thesis/paper
Thesis comment: Univ. v Mariboru, Fak. za elektrotehniko, računalništvo in informatiko, Informatika in tehnologije komuniciranja
Pages: VII, 68 f.
ID: 8730519