A Cost-Benefit Model for an Enterprise Information Security
Kiran Kumar Kommineni1, Adimulam Yesu Babu2

1Mr. Kiran Kumar Kommineni, Lecturer, Department of Information Technology, Bapatla Engineering College, Bapatla – 522101, Guntur, AP, INDIA
2E Dr. Adimulam Yesu Babu, I/c Principal and Professor in Computer Science & Engineering, Sir. CR Reddy College of Engineering, Eluru -534007, West Godavari (Dt), AP.,India.

Manuscript received on 07 February 2013 | Revised Manuscript received on 21 February 2013 | Manuscript Published on 28 February 2013 | PP: 72-76 | Volume-2 Issue-3, February 2013 | Retrieval Number: C0424022313/2013©BEIESP
Open Access | Editorial and Publishing Policies | Cite | Mendeley | Indexing and Abstracting
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)

Abstract: — A Cost-Benefit model for an enterprise information security is presented in this paper. Economical analysis of information security investments that enterprises can use as guidance when applying the recommended risk mitigation plans are developed. An enterprises information security risk management associated with economical metrics. An economical analytical model is presented that enables the assessment of the necessary investment in the recommended information security. This model would be useful for both information security professionals and researchers in assessing the cost of the security measures versus the benefit of these measures in reducing the identified information security challenges.
Keywords: Cost Benefit Model; Enterprise; Information Security; Risk management.

Scope of the Article: Risk management