SELECTION AND APPLICATION OF APPROPRIATE ANALYTICAL METHODS NEEDED TO ASSESS THE RISKS REDUCING THE SECURITY OF THE PROTECTED SYSTEM

##plugins.themes.bootstrap3.article.main##

##plugins.themes.bootstrap3.article.sidebar##

  Josef Reitšpís

  Martin Mašľan

  Igor Britchenko

Abstract

Risk assessment is one of the prerequisites for understanding its causes and possible consequences. We base our risk assessment on the principles described in the European standard EN 31000 - Risk Management Process. This standard comprehensively describes the continuous activities that are necessary in managing risks and minimizing their possible adverse effects on the operation of the system under investigation. In this activity, it is necessary to first identify the existing risks, then analyze and evaluate the identified risks. In the analysis of existing risks, it is possible to use both qualitative and quantitative analytical methods, or combine them. We use qualitative methods in cases where we do not have a sufficient amount of input information, these are more subjective. Quantitative methods are more accurate, but also more demanding on input information and time. The choice of a suitable analytical method is a basic prerequisite for knowledge of risks and their evaluation. The values of individual risks obtained in this way are the basis for determining the measures that are necessary to minimize them, i.e., to adjust them to an acceptable level. The draft measures are always based on the value of the individual components used to calculate the risk number, as well as on the value of the asset , which needs to be protected. Appropriately chosen analytical methods are one of the basic prerequisites for the consistent application of the principles of risk management, as a continuous process aimed at increasing the overall security of the system under study. In the article, the author describes the procedures used in risk assessment, as well as specific analytical methods that can be used in working with risks. The aim of identifying risk factors is to create a list of events that could cause undesirable disruption to ongoing processes. At this stage, we define all the risks that will be subsequently analyzed and evaluated. When identifying, we can use methods such as, e.g. SWOT, PHA (Preliminary Hazard Analysis) or CA (Checklist Analysis). Methods suitable for determining the causes and creating scenarios for the course of a risk event are ETA (Event Tree Analysis) or FTA (Fault Tree Analysis). The basic analysis of the system can be performed using the FMEA method (Failure Mode and Effect Analysis), which provides a numerical risk assessment. By comparison with the numerical value of the risk that we are willing to accept, we obtain 2 groups of risks. Acceptable, which will be given regular attention and unacceptable, which we will focus on in risk management and we will try to minimize its negative affect on the functioning of the system under study.

How to Cite

Reitšpís, J., Mašľan, M., & Britchenko, I. (2021). SELECTION AND APPLICATION OF APPROPRIATE ANALYTICAL METHODS NEEDED TO ASSESS THE RISKS REDUCING THE SECURITY OF THE PROTECTED SYSTEM. Baltic Journal of Economic Studies, 7(3), 1-8. https://doi.org/10.30525/2256-0742/2021-7-3-1-8
Article views: 136 | PDF Downloads: 74

##plugins.themes.bootstrap3.article.details##

Keywords

risk management, analysis, risk assessment, preventive and corrective measures, protected asset, value of risk

References

Buzalka, J. (2012). Teória bezpečnostných rizík. Bratislava: Akadémia PZ Slovensko.

Hofreiter, L. (2004). Bezpečnosť, bezpečnostné riziká a ohrozenia. Žilina: Edis – vydavateľstvo Žilinskej univerzity. Slovensko. 146 s.

Hopkin, P. (2013). Risk Management. Kogan Page. 288 s.

Hubbard, D. (2009). Failure of Risk Management. Wiley-Blackwell. 304 s.

Kuracina, R., & Ferjenčík, M. (2006). Nástroje pre oceňovanie rizika a vyšetrovanie havárií. Recenzovaný zborník. ISBN 80-8073-649-9

Milind T. Phadtare; A. D. Gosavi; & T. K. Ganguli (2018). Risk management in small and micro construction firms undertaking repairs and modernisation of residential houses: a case of India. International Journal of Risk Assessment and Management, vol. 21 no. 3. DOI: 10.1504/IJRAM.2018.093742

Newsome, B. (2013). Practical introduction to Security and Risk Management. Sage Publications. 408 s.

Paleček, M. (2006). Prevence rizik. Praha: VŠE Česká republika.

Přibil, P., Janota, A., & Spalek, J. (2008). Analýza a řízení rizik v dopravě. Praha:BEN-technická literatura. Česká republika. 526 s.

Reitšpís, J., Bartlová, I., & Hofreiter, L. (2004). Manažérstvo bezpečnostných rizík. Žilina: Edis – vydavateľstvo Žilinskej univerzity. Slovensko. 296 s.

Smejkal, V., & Rais, K. (2006). Řízení rizik ve firmách a jiných organizacích. Praha : Grada publishing, a.s. 300 s.

STN EN ISO 31000:2011: Manažérstvo rizika.

STN EN 60812:20006: Metódy analýzy spoľahlivosti systému. Postup analýzy spôsobu a dôsledku porúch (FMEA).

Tichý, M. (2006). Ovládání rizika: analýza a management. Praha: C.H.Beck. Česká republika. 396 s.