数量化理論I類・回帰分析による情報セキュリティ監査の作業工数見積り

概要

論文の詳細を見る
This paper proposes labor time estimation for the information security audit by analyzing the past 21 cases. It can be considered that audit type, operation type, penetration degree, performance of the audit team, and company size influence labor time. The proposed method extracts factors to estimate labor time by quantification method of the first type. And, labor time estimation formula is established by regression analysis to the extracted factors. As a result of applying the proposed method to actual cases, the error rate is between -7.5% and +7.0% on average, which is under PMBOK's permissible level.