Näytä suppeat kuvailutiedot

Risk Appetite Assessment Algorithm : A Starting Point for Small And Medium Size Organisation for Understanding Information Security Requirements

Ngekeh, Prisca (2020-06-11)

dc.contributor.authorNgekeh, Prisca
dc.date.accessioned2020-07-01T21:01:49Z
dc.date.available2020-07-01T21:01:49Z
dc.date.issued2020-06-11
dc.identifier.urihttps://www.utupub.fi/handle/10024/150108
dc.description.abstractRisk appetite is an important element of any effective risk management process. It is the foundation on which risk decisions are made, but unfortunately it is not often given the attention it deserves. This could be because of the lack of appreciation of its importance. Without a well-defined risk appetite analysis in place, it is very likely for an organization’s risk assessment process to result in over- or under measured security solutions, or risk decisions that are not in line with the organization's business objectives. This thesis focuses on the importance of risk appetite assessment at an early stage of risk management process. Although risk management will be discussed in brief, our main focus is risk appetite. This thesis examines the importance of risk appetite, the reasons why it should be given more attention in organizations, and presents a risk appetite assessment model that can be used by organizations to assess their businesses for an initial high-level description of their risk appetite: how much security is expected, where to focus security resources, etc. This general model can be adapted by small and medium sized organizations for decision making during their risk management process. Towards the end of the thesis, a sample predictive analysis for an organization’s risk appetite is presented. This model is built and adapted through a supervised machine learning algorithm which learns through experience from the trained data in order predicts the future risk appetite of an Organization. Though the accuracy of this prediction model is limited by the small data size, it can be seen that, risk appetite is inversely proportional to risk.
dc.format.extent59
dc.language.isoeng
dc.rightsfi=Julkaisu on tekijänoikeussäännösten alainen. Teosta voi lukea ja tulostaa henkilökohtaista käyttöä varten. Käyttö kaupallisiin tarkoituksiin on kielletty.|en=This publication is copyrighted. You may download, display and print it for Your own personal use. Commercial use is prohibited.|
dc.subjectRisk, Risk appetite, Information security, Risk Value, Algorithm
dc.titleRisk Appetite Assessment Algorithm : A Starting Point for Small And Medium Size Organisation for Understanding Information Security Requirements
dc.type.ontasotfi=Pro gradu -tutkielma|en=Master's thesis|
dc.rights.accessrightsavoin
dc.identifier.urnURN:NBN:fi-fe2020070146637
dc.contributor.facultyfi=Luonnontieteiden ja tekniikan tiedekunta|en=Faculty of Science and Engineering|
dc.contributor.studysubjectfi=Tietojenkäsittelytiede|en=Computer Science|
dc.contributor.departmentfi=Tulevaisuuden teknologioiden laitos|en=Department of Future Technologies|


Aineistoon kuuluvat tiedostot

Thumbnail

Aineisto kuuluu seuraaviin kokoelmiin

Näytä suppeat kuvailutiedot