Date Added: Jul 2012
To ensure a good level of security any organization should conduct regular audits of information security. This process is highly expensive in terms of time, cost, and human resources. Automating the audit process through the development of the software can be a good alternative that will reduce costs, speed up the process of audit and improve quality by compliance it with international security standards. The authors also believe that automation of the audit process should be made by development of fuzzy expert systems, which provide the significant advantages by using in audit area. This paper suggests a way to develop fuzzy expert systems in information security auditing.