A Framework for Information Security Governance and Management

被引:18
|
作者
Carcary, Marian [1 ]
Renaud, Karen [2 ]
McLaughlin, Stephen [3 ,4 ]
O'Brien, Conor [1 ]
机构
[1] Maynooth Univ, Innovat Value Inst, Maynooth, Kildare, Ireland
[2] Univ Glasgow, Glasgow G12 8QQ, Lanark, Scotland
[3] Maynooth Univ, R&D, Innovat Value Inst, Maynooth, Kildare, Ireland
[4] Maynooth Univ, IT Competence Ctr, Maynooth, Kildare, Ireland
来源
IT PROFESSIONAL | 2016年 / 18卷 / 02期
关键词
capability maturity; information security governance; information security management; IT-CMF;
D O I
10.1109/MITP.2016.27
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The capability maturity framework presented helps organizations assess their maturity state and identify problem areas. It addresses the technical, process, and human aspects of information security and provides guidelines for implementing information security governance and management processes.
引用
下载
收藏
页码:22 / 30
页数:9
相关论文
共 50 条
  • [41] Governance and Management of Organizations with Cloud Supported Services Recommendations for Risks of Information Security
    Silva, Elcelina
    Soares, Bruno Horta
    2018 13TH IBERIAN CONFERENCE ON INFORMATION SYSTEMS AND TECHNOLOGIES (CISTI), 2018,
  • [42] Information Security Governance in Colleges and Universities
    Wang, Jia
    4TH INTERNATIONAL CONFERENCE ON ECONOMICS AND MANAGEMENT (ICEM), 2017, : 696 - 699
  • [43] Information security governance in the electricity industry
    de Oliveira, Igor Antonio Magalhaes
    Mexas, Mirian Picinini
    Machado, Elaine Mara Marcal
    Drumond, Geisa Meirelles
    BRAZILIAN JOURNAL OF OPERATIONS & PRODUCTION MANAGEMENT, 2022, 19 (01):
  • [44] Information security governance: Due care
    von Solms, Rossouw
    von Solms, S. H. Basie
    COMPUTERS & SECURITY, 2006, 25 (07) : 494 - 497
  • [45] The role of information security in corporate governance
    Lindup, K
    COMPUTERS & SECURITY, 1996, 15 (06) : 477 - 485
  • [46] Obstacles to Implementation of Information Security Governance
    Lidster, William W.
    Rahman, Shawon S. M.
    2018 17TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (IEEE TRUSTCOM) / 12TH IEEE INTERNATIONAL CONFERENCE ON BIG DATA SCIENCE AND ENGINEERING (IEEE BIGDATASE), 2018, : 1826 - 1831
  • [47] Information technology and the governance of social security
    Henman, P
    Adler, M
    CRITICAL SOCIAL POLICY, 2003, 23 (02) : 139 - 164
  • [48] Role of information security in corporate governance
    SRI Int, London, United Kingdom
    Comput Secur, 6 (477-485):
  • [49] Information security: A corporate governance issue
    Kritzinger-von Solms, E
    Strous, LAM
    INTEGRITY AND INTERNAL CONTROL IN INFORMATION SYSTEMS V, 2003, 124 : 115 - 133
  • [50] Integrating information security into corporate governance
    Thomson, KL
    von Solms, R
    SECURITY AND PRIVACY IN THE AGE OF UNCERTAINTY, 2003, 122 : 169 - 180
12345