Ȩ > Ç¥ÁØÈ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ
| Ç¥ÁعøÈ£ | TTAE.IT-X.1208 | ±¸Ç¥ÁعøÈ£ | |
|---|---|---|---|
| Á¦°³Á¤ÀÏ | 2014-12-17 | ÃÑÆäÀÌÁö | 42 |
| ÇѱÛÇ¥Áظí | »çÀ̹öº¸¾È À§Çè ÁöÇ¥ | ||
| ¿µ¹®Ç¥Áظí | A cybersecurity indicator of risk toenhance confidence and security in the useof telecommunication/information andcommunication technologies | ||
| Çѱ۳»¿ë¿ä¾à | º» Ç¥ÁØÀÇ ÁÖ¿ä ³»¿ëÀº »çÀ̹öº¸¾È À§Çè ÁöÇ¥, »çÀ̹öº¸¾È À§Çè ÁöÇ¥ °³¹ß ÇÁ·Î¼¼½º, ±×¸®°í »çÀ̹ö º¸¾È ÁöÇ¥ÀÇ ¿¹¸¦ Á¦½ÃÇÑ´Ù. | ||
| ¿µ¹®³»¿ë¿ä¾à | This Recommendation provides a guideline to assist organizations in the development, selection and identification of the data to be captured (based on selected indicators) and shows how this information can be used to compute a cybersecurity indicator of risk (CSIR). Note that an organization may generate a cybersecurity indicator of risk with respect to a specific set of cybersecurity indicators (CSI) while departments within an organization may also generate a cybersecurity indicator of risk with respect to their specific set of cybersecurity indicators (CSI).
The purpose of the cybersecurity indicator is to allow for the evaluation of the level of cybersecurity competency at a particular point in time of an organization and, when this process is repeated at other points in time, it allows the status of an organization's cybersecurity programme's progress over time to be determined. This Recommendation also provides a list of potential indicators and describes a methodology to be used when these cybersecurity indicators are used to compute a cybersecurity indicator of risk. |
||
| ±¹Á¦Ç¥ÁØ | |||
| °ü·ÃÆÄÀÏ |
 TTAE.IT-X.1208.pdf
| ||
