By OECD (Organisation for Economic Co-operation and Development)

ISBN-10: 9264025502

ISBN-13: 9789264025509

ISBN-10: 9264025510

ISBN-13: 9789264025516

Show description

Read or Download Norway, Information Security: OECD Reviews of Risk Management Policies PDF

Similar management books

Measuring Time: Improving Project Performance Using Earned - download pdf or read online

Intended to counterpoint instead of compete with the present books at the topic, this publication bargains with the undertaking functionality and regulate levels of the undertaking existence cycle to provide a close research of the project’s time functionality dimension tools and hazard research strategies so one can review present and newly built tools when it comes to their skills to enhance the corrective activities decision-making approach in the course of undertaking monitoring.

Global Cash Management in Europe by David F. Birks PDF

The only ecu industry, the second one Banking Directive, rest of cross-border capital and money pursuits and the potential creation of a unmarried ecu foreign money have led so much organizations to undertake new money administration ideas, or to plot for significant structural alterations within the close to destiny. This e-book focuses upon treasury and digital banking practices in eu funds administration.

Extra resources for Norway, Information Security: OECD Reviews of Risk Management Policies

Sample text

The type and nature of security and preparedness measures are not explicitly laid down in the regulation, but are subject to the principle of due diligence. This will normally include activities such as the creation and maintenance of contingency and preparedness plans, participation in exercises, physical protection of installations, etc. The costs will in principle be covered by the operators themselves. However, if the providers can document that the costs engendered by security and preparedness measures exceed the cost of a purely commercial operation, the government will reimburse the additional cost.

Conclusion and recommendations Findings Risk assessment regarding critical information infrastructures is incomplete, but the BAS5 project and especially the work of the Government Commission on Critical Infrastructures might provide a solid basis for it. Opportunities for action • As a follow-up to the work of the Commission on Critical Infrastructures, a process of dialogue involving the users, suppliers and regulators of critical infrastructures could be developed across sectors, NORWAY: INFORMATION SECURITY – ISBN-92-64-02550-2 © OECD 2006 ASSESSING INFORMATION SECURITY RISKS – 57 in order to clarify issues of risk assessment, in particular with regard to information security (see also Recommendation 6).

The Act Relating to Protective Security Services, in particular, is focussed on the protection of (confidentiality of) classified information, and does not play a significant role in the protection of unclassified information, which can be of equal importance. The legislative developments under consideration when this review was conducted did not seem to address this tendency adequately. The imbalance in the Act regarding confidentiality, integrity and availability probably stems from the fact that a number of sector regulations include provisions on the two latter aspects.

Download PDF sample

Norway, Information Security: OECD Reviews of Risk Management Policies by OECD (Organisation for Economic Co-operation and Development)


by Thomas
4.5

Rated 4.62 of 5 – based on 45 votes