Risk reduction actions
Information security and safety for risk management – Application to Information System

Add to my library

SE2500 V4 Quizzed article

Risk reduction actions


Information security and safety for risk management – Application to Information System

Author : Frédérique VALLÉE

Publication date: February 10, 2024 | Lire en français

Add to my library Add to my library

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

3. Risk reduction actions

Once risk analysis methods have highlighted the vulnerabilities of the information system, the next step is to find solutions that will reduce the risk to an acceptable level. This chapter presents some of these solutions.

3.1 Nature of possible actions

Depending on the stage at which they intervene in the evolution of the threat, risk reduction actions can be prevention, detection, correction or recovery.

  • Prevention deals with measures to be taken to avoid a disaster. For example:

    • raising awareness (among legitimate users) ;

    • deterrence (e.g. a tattoo covering the body of a message with an indelible electronic watermark);...

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?


Article included in this offer

"Safety and risk management"

( 463 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details

Dans les ressources documentaires

Sécurité de l’information, cybersécurité et protection des données de vie privée - NF EN ISO/IEC 27001 : 2023

La sécurité de l'information fait partie du périmètre de la normalisation (ISO et AFNOR). À savoir les no...

NIS2 et ISO/IEC 27001 – Vers une cyberrésilience de l’Union européenne

L'objet de cet article est d’apporter des précisions sur la directive NIS2, les différences avec la norme...

Social engineering et sécurité du système d’information - De la nécessité de la prévention

Nous présentons les mécanismes d’attaque liés au social engineering , tels que les techniques de  p...

Cyberespionnage : la menace APT

Cet article propose de faire le point sur les attaques informatiques « APT », acronyme internat...

Tous les livres blancs
Toutes les actualités
Contact us