Skip to main content
SpringerLink
Log in

Risk analysis for Information Systems

  • Management Report
  • Published:
Journal of Information Technology

Abstract

This paper presents an integrated approach to risk analysis for Information Systems (IS) using the Structured Risk Analysis (SRA) methodology developed at Hyperion. SRA has been used, very successfully, to perform risk analysis both for security-oriented risk analysis in the City and safety-oriented risk analysis for the European Space Agency. This paper develops and describes a particular instance of the SRA methodology for IS. Excluding safety-critical applications allows certain simplifications to the methodology in the case of IS. These simplifications make structured risk analysis for information systems (SRA-IS) a practical and cost-effective basis for risk analysis and risk management in commercial organizations.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Similar content being viewed by others

Author information

Authors and Affiliations

  1. Hyperion Systems Limited, Surrey, UK

    David G W Birch & Neil A McEvoy

Authors
  1. David G W Birch
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Neil A McEvoy
    View author publications

    You can also search for this author in PubMed Google Scholar

Rights and permissions

Reprints and permissions

About this article

Cite this article

Birch, D., McEvoy, N. Risk analysis for Information Systems. J Inf Technol 7, 44–53 (1992). https://doi.org/10.1057/jit.1992.7

Download citation

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1057/jit.1992.7

Search

Navigation