Academic journal article Baltic Journal of Economics

A Cost Optimizing Model for IT Security

Academic journal article Baltic Journal of Economics

A Cost Optimizing Model for IT Security

Article excerpt

Keywords: IT security, IT Security graph-based model, Graded Security Model, Graded Security Expert System, IT security costs optimization.

Defended on November 6,2013 at the Estonian Business School.

The thesis is available digitally at

Supervisor: Peeter Lorents (Ph.D, Professor),the Estonian Business School, Estonia

Nowadays it is impossible to manage any business effectively without information systems. IT has become ubiquitous and practically all companies have to view IT as a common, yet highly critical, resource to their success. However, common resources generally do not provide any substantial competitive advantage. Therefore, the new rules for IT management are to spend less and to focus on lowering residual risks.

As a result, all organizations have to be optimal in IT and IT Security. Competitive advantage from IT is ensured mainly by the price and security of IT and its impact on the net cost of the service(s) and product(s) provided by the company.

This thesis describes the development of a graph-based Graded Security Model for IT Security and the cost optimization software prototype called Graded Security Expert System. This is a new and dynamic decision support system that allows IT and IT Security management to make reasoned urgent managerial decisions based on calculated values of interest - the maximum possible IT Security effectiveness or minimum IT Security Total Costs as a function from the IT/IT Security Budget in a given budget range. A Graded Security Model is proposed, which binds security measures with their costs and security effectiveness. …

Search by... Author
Show... All Results Primary Sources Peer-reviewed


An unknown error has occurred. Please click the button below to reload the page. If the problem persists, please try again in a little while.