Multiobjective decision support in IT-risk management

Christine Strauss, Christian Stummer

Veröffentlichungen: Beitrag in FachzeitschriftArtikelPeer Reviewed


Security issues in information management are increasingly moving towards the centre of corporate interests. This paper presents a multiobjective modelling approach that interactively assists IT managers in their attempts to reduce a given risk by evaluating and selecting portfolios (i.e., bundles) of security measures. The proposed multi-step procedure identifies attractive portfolio candidates and finally establishes the "best" one with respect to the decision-maker¿s preferences. Our model and its possible application are demonstrated by means of a numerical example based on real-world data that evaluates the risk of hacking faced by a Local Area Network in an academic environment.
Seiten (von - bis)251-268
FachzeitschriftInternational Journal of Information Technology and Decision Making
PublikationsstatusVeröffentlicht - 2002

ÖFOS 2012

  • 502052 Betriebswirtschaftslehre