| Description |
1 online resource (130 pages) |
| Series |
OECD reviews of risk management policies |
|
OECD reviews of risk management policies.
|
| Contents |
Summary of Findings and Recommendations; Synthèse des conclusions et recommandations; Chapter 1. The Norwegian Strategy for Information Security; 1.1. Overview of the Strategy; 1.2. Policy analysis; 1.3. Conclusion and recommendations; Chapter 2. Assessing Information Security Risks; 2.1. Risk assessment in the government; 2.2. Risk assessment in critical infrastructures; Chapter 3. Protecting Information Systems; 3.1. Protection of government systems; 3.2. Protection of critical infrastructure systems; Chapter 4. Managing Incidents, Emergencies and Crises; 4.1. Incident management |
|
4.2. Contingency and preparedness planning4.3. Emergency and crisis management; Chapter 5. Strengthening the Foundations of Security; 5.1. Awareness-raising; 5.2. Information-sharing; 5.3. Education and R Bibliography; Annex 1: Terminology and Definitions; Annex 2: Acronyms and Organisations Cited; Annex 3: Methodology; Annex 4: Norwegian Institutions and Laws in the Area of InformationSecurity; Annex 5: Self-assessment Questionnaires; Annex 6: List of Interviewees; Annex 7: Members of the Steering Group |
| Summary |
The development of information and communication technologies and networks, and in particular that of the Internet, has gone hand-in-hand with the emergence of new types of malevolent actions called cyber-crime: viruses, worms, Trojan horses, and the like. While a number of factors make a strong case for governmental action in the area of information security, there are also important limits to what governments can achieve. This review, the first in a series of risk management policy reviews being conducted by the OECD, identifies areas of good practice in Norway's policies for information security, as well as areas where improvements could be made. For areas that could benefit from improvement, it proposes opportunities for action and, when possible, suggests alternatives.--Cover |
| Bibliography |
Includes bibliographical references (pages 91-98) |
| Issuing Body |
"The first country review conducted within the framework of the OECD Futures Project on Risk Management Policies." |
| Notes |
English |
|
Print version record |
| Subject |
Computer security -- Norway
|
|
Computer networks -- Security measures -- Norway
|
|
Data protection -- Norway
|
|
Information resources management -- Norway
|
|
Computer security -- Standards -- Norway
|
|
Computer security -- Norway -- Management
|
|
Risk assessment.
|
|
Risk Assessment
|
|
risk assessment.
|
|
COMPUTERS -- Internet -- Security.
|
|
COMPUTERS -- Networking -- Security.
|
|
COMPUTERS -- Security -- General.
|
|
Risk assessment
|
|
Computer security -- Standards
|
|
Computer security -- Management
|
|
Computer networks -- Security measures
|
|
Computer security
|
|
Data protection
|
|
Information resources management
|
|
ICT.
|
|
Computerbeveiliging.
|
|
Norway
|
| Form |
Electronic book
|
| Author |
Organisation for Economic Co-operation and Development
|
|
OECD Futures Project on Risk Management Policies.
|
| ISBN |
9264025510 |
|
9789264025516 |
|
9264025502 |
|
9789264025509 |
|
