Methods and means for security management of applications
Journal Title: Інформаційно-керуючі системи на залізничному транспорті - Year 2018, Vol 23, Issue 4
Abstract
The purpose of the work is to identify a number of practical recommendations for using methods and tools for managing application security. The paper proposes a series of practical recommendations on the management of the forces and means of security of IT organizations in the context of the use of flexible methodologies for the development of software Agile. In the general case, such adjustments can be realized in the following practical directions: Viewing the application security paradigm; Distribution of the team; Expand the powers of security experts in the process of team improvement; Constant review of requirements, methods, tools, algorithms and other data in security management. The implementation of these recommendations allows: to understand the need for a constant increase in the share of automated process management approaches at all stages of the development and implementation of IT products and services; to provide the given level of quality of applications without involving significant resources and forces (experts); check organization of development, documents and safety issues, organization of work with key security elements; analyze and evaluate changes in the IT system, processing environment, security policy. A successful risk management program is not possible without joint support and involvement of management, team and security experts.
Authors and Affiliations
O. Kovalenko
Keywords
Related Articles
- EP ID EP498584
- DOI 10.18664/ikszt.v0i4.141992
- Views 112
- Downloads 0
Control optimization motor-fan cooling of traction engines of a freight locomotive with an asynchronous traction drive when driving on a section of the road with a specified profile and traffic schedule
The work is devoted to the development of methods for control optimization of the motor-fan of traction engines of a freight locomotive with an asynchronous traction drive when moving to sections with a specified profile...
Standardization of infocommunication networks and systems
In the Global Information Infrastructure (GII) compatibility problems of the national systems are very importaint. That is why normative and legal framework of the construction and operation of infocommunications should...
The peculiaritiies of assessing process design of current and projected technical condition of a vehicle during operation under ITS
The article presents the results of study assessment process modeling features current and projected technical condition of the car and vehicles in general during their operation. The following features of remote monitor...
The performance of multipath routing in wireless Ad-hoc networks
In the past few years, we have seen a rapid expansion in the field of mobile computing due to the proliferation of inexpensive, widely available wireless devices. However, current devices, applications and protocols are...
Problems of reconstruction of the railway track plan and approaches to their solution
In the past decades, high-speed passenger traffic has been introduced all over the world on operating railways, it was driven by the imperatives of our era as a means of surviving railways in competition with other modes...