oondi | Free Articles. Write for Cash.

Invite your friends to read this article

The fast development of Information System’s (IS) support technologies has caused deep changes in organization’s environment. Nowadays, information contained in IS is a critical asset as far as business or decision making is concerned. The organizations are exposed to an increased risk scenario concerning their activity, including the exposure of their IS to a great variety of threats. This risk is essentially motivated by the existence of an increasingly opened international environment implicating growing threats and by the massive use of Information and Communication Technologies (ICT), especially computer networks. The adhesion of these organizations to Internet is growing, reflecting equally the volume of Information transactions, many of them confidential and private. Due to low intrinsic associated costs, Internet is an open communication media with inherent violability characteristics; such characteristics are assumed as a factor of desacelleration of the referred adhesion. All these factors combined generate several concerns with respect to IS security. Traditionally and due to several causes, IS security in academic institutions is sometimes neglected or inadequate to the actual technological and social environment. It is urgent to define appropriate measures aiming protection of assets in order to provide adequate levels of availability, integrity and confidentiality to Information, adjusted to the objectives of this kind of institutions, proposing risk methodologies analysis, based in simple quantitative approaches and in methods for information value determination as a support to the implementation of security policies for prevention against possible IS security incidents in this kind of institutions institutions.