Security by Design Practices for IT Projects Management in SMEs

被引：0

作者：

de la Camara, Mercedes ^{[1
]}

Saenz-Marcilla, Javier ^{[1
]}

Arcilla-Cobian, Magdalena ^{[2
]}

Calvo-Manzano, Jose A. ^{[3
]}

机构：

[1] Univ Politecn Madrid, Escuela Tecn Super Ingenieros Sistemas Informac, Madrid, Spain

[2] Univ Nacl Educ Distancia, ETS Ingn Informat, Madrid, Spain

[3] Univ Politecn Madrid, ETS Ingenieros Informat, Madrid, Spain

来源：

2016 11TH IBERIAN CONFERENCE ON INFORMATION SYSTEMS AND TECHNOLOGIES (CISTI) | 2016年

关键词：

Project management; Security by design; CMMI-DEV; Software Process Improvement (SPI); COBIT; 5; ISO/IEC; 15504; 27000;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Secure by Design (SBD) is oriented to secure software development project management. This article presents the results of a research where SbD practices are mapped to the practices, activities and control objectives proposed by the major frameworks and standards that deal with the management of software development projects. These frameworks are divided into three organizational levels (strategic, tactical and operational). The results of the research show the main contributions and lacks of these frameworks into managing projects for the development of secure software product. Furthermore, in the environment of SMEs, this study makes it easier for IT professionals implementing practices, activities, and security control objectives, integrating different frameworks and standards of governance and management in IT development projects.

引用

页数：6

共 50 条

[1] An Assessment of Lean Design Management Practices in Construction Projects
Herrera, Rodrigo F.
Mourgues, Claudio
Fernando Alarcon, Luis
Pellicer, Eugenio
[J]. SUSTAINABILITY, 2020, 12 (01)
[2] Knowledge management practices in Turkish SMEs
Bozbura, F. Tunc
[J]. JOURNAL OF ENTERPRISE INFORMATION MANAGEMENT, 2007, 20 (02) : 209 - +
[3] Risk Management of ERP Projects in Manufacturing SMEs
Iskanius, Paivi
[J]. INFORMATION RESOURCES MANAGEMENT JOURNAL, 2010, 23 (03) : 60 - 75
[4] INFORMATION SECURITY MANAGEMENT IN SMES: FACTORS OF SUCCESS
Kljucnikov, Aleksandr
Mura, Ladislav
Sklenar, David
[J]. ENTREPRENEURSHIP AND SUSTAINABILITY ISSUES, 2019, 6 (04): : 2081 - 2094
[5] Dynamic capabilities and the evolution of knowledge management projects in SMEs
Filippini, Roberto
Guettel, Wolfgang H.
Nosella, Anna
[J]. INTERNATIONAL JOURNAL OF TECHNOLOGY MANAGEMENT, 2012, 60 (3-4) : 202 - 220
[6] Comparing the quality management practices in UK SMEs
Kumar, Maneesh
Antony, Jiju
[J]. INDUSTRIAL MANAGEMENT & DATA SYSTEMS, 2008, 108 (09) : 1153 - 1166
[7] Goals, management practices, and performance of family SMEs
Kotey, Bernice
[J]. INTERNATIONAL JOURNAL OF ENTREPRENEURIAL BEHAVIOR & RESEARCH, 2005, 11 (01): : 3 - +
[8] Knowledge Management Tools and Practices alignment in SMEs
Cerchione, Roberto
Esposito, Emilio
[J]. IFKAD 2015: 10TH INTERNATIONAL FORUM ON KNOWLEDGE ASSET DYNAMICS: CULTURE, INNOVATION AND ENTREPRENEURSHIP: CONNECTING THE KNOWLEDGE DOTS, 2015, : 1173 - 1192
[9] Information Security Best Practices: First Steps for Startups and SMEs
Kaila, Urpo
Nyman, Linus
[J]. TECHNOLOGY INNOVATION MANAGEMENT REVIEW, 2018, 8 (11): : 32 - 42
[10] Analyzing the Association between Lean Design Management Practices and BIM Uses in the Design of Construction Projects
Herrera, Rodrigo F.
Mourgues, Claudio
Alarcon, Luis F.
Pellicer, Eugenio
[J]. JOURNAL OF CONSTRUCTION ENGINEERING AND MANAGEMENT, 2021, 147 (04)

← 1 2 3 4 5 →