• A
  • A
  • A
  • ABC
  • ABC
  • ABC
  • А
  • А
  • А
  • А
  • А
Regular version of the site
For visually-impairedFor visually-impairedUser profile (HSE staff only)Search
Advanced search
Menu
HSE University

Development of a Methodology for Assessing the Maturity of Information Security System

Student: Udaltsov Valentin

Supervisor: Oleg Kovalev

Faculty: Graduate School of Business

Educational Programme: Information Security Management (Master)

Year of Graduation: 2017

In this work, we developed a methodology for assessing the maturity of information security system. As far as the methodology relies primarily on the model in the first part of the paper we examined some popular modern models of maturity of security systems: SSE-CMM, BCIMM 7, OWASM SAMM and FFIEC Cybersecurity Assessment Tool. On the basis of derived criteria, we considered the model SAMM OWASM the most suitable for the development of a methodology and based on it described the process of maturity assessment of an information security system. The result of this work is a ready-to-use in practice methodology for assessing the maturity of information security system.

Student Theses at HSE must be completed in accordance with the University Rules and regulations specified by each educational programme.

Summaries of all theses must be published and made freely available on the HSE website.

The full text of a thesis can be published in open access on the HSE website only if the authoring student (copyright holder) agrees, or, if the thesis was written by a team of students, if all the co-authors (copyright holders) agree. After a thesis is published on the HSE website, it obtains the status of an online publication.

Student theses are objects of copyright and their use is subject to limitations in accordance with the Russian Federation’s law on intellectual property.

In the event that a thesis is quoted or otherwise used, reference to the author’s name and the source of quotation is required.

Search all student theses