Information security model
First Claim
1. A method of increasing security in an organization, comprising the steps of a. defining a plurality of information technology entities;
- b. defining a plurality of risk and/or security components;
c. defining a plurality of security functional components; and
d. calculating a level of compliance of the organization'"'"'s security components relative to a selected level of compliance.
1 Assignment
0 Petitions
Accused Products
Abstract
An information security model provides a set of schemas that ensure coverage of all securing components. All points are addressed and evaluated in a net of three-dimensional coorindate knots The model defines the relation between components in the information risk and security space, and provides an information risk and security framework that ensures that all information security components are addressed; enables standardized information security audit; provides information risk compliance numbers; and defines strategic business direction to address information security implementation. The information security model of the present invention standardizes the approach and creates a matrix through which risk compliance factors can be calculated.
23 Citations
2 Claims
-
1. A method of increasing security in an organization, comprising the steps of
a. defining a plurality of information technology entities; -
b. defining a plurality of risk and/or security components;
c. defining a plurality of security functional components; and
d. calculating a level of compliance of the organization'"'"'s security components relative to a selected level of compliance.
-
-
2. A method of increasing security in an organization, comprising the steps of:
-
a. defining a plurality of information technology entities;
b. defining a plurality of risk and/or security components;
c. defining a plurality of security functional components; and
d. calculating a level of risk of the organization'"'"'s security components relative to a selected level of risk.
-
Specification
-
- Resources
-
Current AssigneeScienton Technologies Incorporated
-
Original AssigneeScienton Technologies Incorporated
-
InventorsMiladinovic, Jovan, Pavlovic, Slavoljub, Zivic, Predrag
-
Application NumberUS10/482,274Publication NumberTime in Patent OfficeDaysField of SearchUS Class Current713/164CPC Class CodesG06Q 10/10 Office automation; Time man...
