{"id":66497,"date":"2023-03-13T11:56:37","date_gmt":"2023-03-13T11:56:37","guid":{"rendered":"https:\/\/www.kriativ-tech.com\/?p=66497"},"modified":"2023-03-13T12:02:10","modified_gmt":"2023-03-13T12:02:10","slug":"application-tool-for-information-security-and-cybersecurity-risk-management-in-an-organization","status":"publish","type":"post","link":"http:\/\/www.kriativ-tech.com\/?p=66497","title":{"rendered":"Application tool for information security and cybersecurity risk management in an organization"},"content":{"rendered":"

[vc_row][vc_column width=”1\/2″][vc_custom_heading heading_semantic=”p” text_font=”font-213936″ text_size=”h5″ text_height=”fontheight-843833″ uncode_shortcode_id=”175189″]Kriativ-tech Volume 1, Issue 9, January 2023, Pages: xxx Received: Jan. 22, 2023; Accepted: Jan. 27, 2023. Published: Mar. 13, 2023.[\/vc_custom_heading][vc_custom_heading heading_semantic=”h3″ text_size=”h3″]Authors[\/vc_custom_heading][vc_custom_heading heading_semantic=”p” text_size=”h5″ uncode_shortcode_id=”171851″]<\/p>\n

S\u00e9rgio Pinto,\u00a0Assistant Professor at ISTEC<\/p>\n

[\/vc_custom_heading][\/vc_column][vc_column width=”1\/2″][vc_custom_heading]Media[\/vc_custom_heading][vc_button button_color=”accent” border_animation=”btn-ripple-out” border_width=”0″ link=”url:http%3A%2F%2Fwww.kriativ-tech.com%2Fwp-content%2Fuploads%2F2023%2F03%2FSergioPinto_Article_RiskManagement_final.pdf|target:_blank” button_color_type=”uncode-palette” uncode_shortcode_id=”132202″]PDF[\/vc_button][vc_custom_heading heading_semantic=”h4″ text_size=”h4″]To cite this article[\/vc_custom_heading][vc_custom_heading heading_semantic=”p” text_size=”h6″ uncode_shortcode_id=”692815″]S\u00e9rgio Pinto, Application tool for information security and cybersecurity risk management in an organization<\/b>
\nDOI: 10.31112\/kriativ-tech-2022-06-81[\/vc_custom_heading][\/vc_column][\/vc_row][vc_row row_height_percent=”0″ overlay_alpha=”50″ gutter_size=”1″ column_width_percent=”100″ shift_y=”0″ z_index=”0″][vc_column column_width_percent=”100″ gutter_size=”0″ override_padding=”yes” column_padding=”1″ overlay_alpha=”50″ shift_x=”0″ shift_y=”0″ shift_y_down=”0″ z_index=”0″ medium_width=”0″ mobile_width=”0″ width=”1\/1″][vc_custom_heading heading_semantic=”h3″ text_size=”h3″]Abstract[\/vc_custom_heading][vc_custom_heading heading_semantic=”p” text_font=”font-213936″ text_size=”h5″ text_height=”fontheight-843833″ uncode_shortcode_id=”560523″]Currently organizations are increasingly exposed to information security and cybersecurity attacks. Therefore, this article intends to describe a process for analyzing\/auditing potential risks to be able to assist an organization in choosing the security measures and controls to define and implement an adequate level of security. Additionally, this article also intends to be a reference for the development of an application tool to implement this process.[\/vc_custom_heading][vc_empty_space empty_h=”2″][vc_custom_heading heading_semantic=”h3″ text_size=”h3″]Keywords[\/vc_custom_heading][vc_custom_heading heading_semantic=”p” text_size=”h5″ uncode_shortcode_id=”479787″]Cybersecurity, Impact, Organization, Probability, Risk, Threat, Vulnerability.[\/vc_custom_heading][\/vc_column][\/vc_row][vc_row][vc_column column_width_percent=”100″ gutter_size=”0″ overlay_alpha=”50″ shift_x=”0″ shift_y=”0″ shift_y_down=”0″ z_index=”0″ medium_width=”0″ mobile_width=”0″ width=”1\/1″][vc_custom_heading heading_semantic=”h3″ text_size=”h3″]References[\/vc_custom_heading][vc_custom_heading heading_semantic=”p” text_font=”font-213936″ text_size=”h5″ text_height=”fontheight-843833″ uncode_shortcode_id=”777612″][1] CNCS (2022), \u201cGuia para Gest\u00e3o de Riscos em mat\u00e9rias de Seguran\u00e7a da Informa\u00e7\u00e3o e Ciberseguran\u00e7a\u201d, retrieved from: https:\/\/www.cncs.gov.pt\/docs\/guia-de-gestao-dos-riscos.pdf<\/p>\n

[2] CNCS (2019), \u201cQNRCS: Quadro Nacional de Refer\u00eancia para a Ciberseguran\u00e7a\u201d, retrieved from:
\nhttps:\/\/www.cncs.gov.pt\/docs\/cncs-qnrcs-2019.pdf<\/p>\n

[3] Artigo 10\u00ba Decreto Lei n\u00ba 65\/2021, 30 de julho, \u201cRegime Jur\u00eddico da Seguran\u00e7a do Ciberespa\u00e7o\u201c, retrieved from:
\nhttps:\/\/www.cncs.gov.pt\/pt\/regime-juridico\/<\/p>\n

[4] CNCS (2020), \u201cQuadro de Avalia\u00e7\u00e3o de Capacidades de Ciberseguran\u00e7a\u201d, retrieved from: https:\/\/www.cncs.gov.pt\/docs\/cncs-quadrodeavaliacao.pdf<\/p>\n

[5] ISO\/IEC 27005:2018, \u201cInformation technology — Security techniques — Information security risk management\u201d, retrieved from: https:\/\/www.standards-pdf-download.com\/iso-iec-27005-2018-download-free.html<\/p>\n

[6] NIST (2022), \u201cRisk Management Framework: Security and Privacy Controls for Information Systems and Organizations, Revision 5\u201d, SP 800-53, retrieved from: https:\/\/csrc.nist.gov\/publications\/detail\/sp\/800-53\/rev-5\/final<\/p>\n

[7] NP ISO\/IEC 31000, \u201cGest\u00e3o do Risco \u2013 Linhas de orienta\u00e7\u00e3o\u201d, retrieved from: http:\/\/qualitividade.pt\/wp-content\/uploads\/2016\/04\/NPISO031000_2012.pdf<\/p>\n

[8] ISO\/IEC 27001:2022, \u201cInformation security, cybersecurity and privacy protection \u2014 Information security management systems \u2014 Requirements\u201d
\n, retrieved from: http:\/\/www.itref.ir\/uploads\/editor\/2ef522.pdf
\n[\/vc_custom_heading][\/vc_column][\/vc_row]<\/p>\n","protected":false},"excerpt":{"rendered":"

S\u00e9rgio Pinto,\u00a0Assistant Professor at ISTEC
\nDOI: 10.31112\/kriativ-tech-2022-06-81<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[70],"tags":[],"_links":{"self":[{"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=\/wp\/v2\/posts\/66497"}],"collection":[{"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=66497"}],"version-history":[{"count":2,"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=\/wp\/v2\/posts\/66497\/revisions"}],"predecessor-version":[{"id":66504,"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=\/wp\/v2\/posts\/66497\/revisions\/66504"}],"wp:attachment":[{"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=66497"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=66497"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.kriativ-tech.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=66497"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}