Analysis of events of information security for corrective actions in safety management

Muhin V.E., Volokita A.N.

The article is devoted to the analysis of the information security events in accordance with international standard ISO/IEC 27001:2005 “Information technology. Security techniques. Information security management systems. Requirements”. This analysis allows to reveal the relationship between the information security events, to apply the appropriate management mechanisms and to perform the corrective actions for the security incidents recurrence prevention.

Full text (pdf)