IJSRP, Volume 3, Issue 2, February 2013 Edition [ISSN 2250-3153]
Gamal Abdel Nasir, Ammar Yassir, Norafida Ithnan
A considerable amount of research has been conducted on information security in recent years. Limited attention has been paid to the intrinsic tradeoff between security and system usability within the current literature. The balance between protecting organizational assets and preventing access is always a difficult line and this represents an important distinguishing feature of the study of computer and information systems security. In this research, a new Dynamic Risk Assessment Model (DRAM) is proposed to secure any type of information i.e., organization information or information system. The main case study has been taken from one of the leading Telecommunication Organization which is based on my scope to the physical and logical types of information. Various dynamic and static models are investigated in order to find a suitable way of securing information which is processed either in physical or logical manner. There are different static and dynamic security risk assessment tools are available. Although, a dynamic security risk assessment tool is used to help in getting into the field of developing a new model for the telecommunication system. In DRAM, various dynamic and static models are compared with the help of data in form of diagrams and tables. As a result of these comparisons, a new dynamic risk assessment model is proposed to help telecommunication organizations to secure their information from any threats.