Litcius/Paper detail

A Novel Security Framework to Mitigate and Avoid Unexpected Security Threats in Saudi Arabia

Ahmad Alshammari

2023Engineering Technology & Applied Science Research17 citationsDOIOpen Access PDF

Abstract

Many organizations around the world suffer large losses due to unexpected risks which can have a profound impact on their survival. This paper presents a novel security framework to address the security needs of Saudi organizations. There are four stages in the security framework: risk assessment and management, security intelligence and analytics, security policies and procedures, and security monitoring. A comprehensive security solution was provided by combining common security frameworks, e.g. ISO/IEC 27001:2013, NIST Cybersecurity Framework, and COBIT. The developed framework was designed to help Saudi organizations identify, assess, and control risks and respond to unexpected events in a timely and effective manner. It is expected to help organizations develop and implement effective security measures to protect their critical assets and operations from security threats. The proposed framework is comprehensive and can cover most organizations' requirements.

Topics & Concepts

COBITSecurity information and event managementComputer securitySecurity managementSecurity serviceCloud computing securityInformation securitySecurity controlsSecurity convergenceInformation security managementRisk analysis (engineering)ITIL security managementInformation security auditBusinessThreatStandard of Good PracticeCertified Information Security ManagerComputer scienceControl (management)Network security policyOperating systemArtificial intelligenceCloud computingInformation and Cyber SecurityCybercrime and Law Enforcement StudiesNetwork Security and Intrusion Detection