Development of the Information Security Management System Standard for Public Sector Organisations in Estonia

被引：0

作者：

Seeba, Mari ^{[1
,2
]}

Matulevicius, Raimudas ^{[1
]}

Toom, Ilmar ^{[2
]}

机构：

[1] Univ Tartu, Inst Comp Sci, Tartu, Estonia

[2] Estonian Informat Syst Author, Tallinn, Estonia

来源：

24TH INTERNATIONAL CONFERENCE ON BUSINESS INFORMATION SYSTEMS (BIS): ENTERPRISE KNOWLEDGE AND DATA SPACES | 2021年

关键词：

Information Security Management System; ISMS; Public Sector; Requirements of Security Standards; Estonia;

D O I：

10.52825/bis.v1i.43

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Standardisation gives us a common understanding or processes to do something in a commonly accepted way. In information security management, it means to achieve the appropriate security level in the context of known and unknown risks. Each government's goal should be to provide digital services to its citizens with the acceptable level of confidentiality, integrity and availability. This study elicits the EU countries' requirements for information security management system (ISMS) standards and provides the standards' comparison requirements. The Estonian case is an example to illustrate the method when choosing or developing the appropriate ISMS standard to public sector organisations.

引用

下载

页码：355 / 366

页数：12

共 50 条

[31] A performance evaluation of information security training in public sector
Park S.-K.
Lee S.-H.
Kim T.-Y.
Jun H.-J.
Kim T.-S.
Journal of Computer Virology and Hacking Techniques, 2017, 13 (4) : 289 - 296
[32] Giving sense and changing perceptions in the implementation of the performance management system in public sector organisations in developing countries
Ohemeng, Frank Louis Kwaku
Asiedu, Emelia Amoako
Obuobisa-Darko, Theresa
INTERNATIONAL JOURNAL OF PUBLIC SECTOR MANAGEMENT, 2018, 31 (03) : 372 - 392
[33] Code of practice: A standard for information security management
Kwok, LF
Longley, D
INFORMATION SECURITY IN RESEARCH AND BUSINESS, 1997, : 78 - 90
[34] Development of image and information management system for Korean standard brain
Chung, SC
Choi, DY
Tack, GR
Sohn, JH
MEDICAL IMAGING 2004: PACS AND IMAGING INFORMATICS, 2004, 5 (25): : 318 - 325
[35] NEW STANDARD ISO/IEC 27001:2013 OF INFORMATION SECURITY MANAGEMENT SYSTEM
Drastich, Martin
KNOWLEDGE FOR MARKET USE 2014: MEDIA AND COMMUNICATION IN THE 21ST CENTURY, 2014, : 387 - 393
[36] AUTOMATION OF AN INFORMATION SECURITY MANAGEMENT SYSTEM BASED ON THE ISO/IEC 27001 STANDARD
de la Rosa Martin, Tonyse
REVISTA UNIVERSIDAD Y SOCIEDAD, 2021, 13 (05): : 495 - 506
[37] Information Systems Management in Public Sector Organizations
Nandi, Madhavi L.
Nayak, Gopal K.
ICIT 2008: PROCEEDINGS OF THE 11TH INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY, 2008, : 289 - 294
[38] Development of an information security standard for healthcare organizations
Kim, Dongsoo
Kim, Minsoo
Proceedings of the Sixth International Conference on Information and Management Sciences, 2007, 6 : 356 - 360
[39] The ISO/IEC 27001 Information Security Management Standard: How to Extract Value from Data in the IT Sector
Kitsios, Fotis
Chatzidimitriou, Elpiniki
Kamariotou, Maria
SUSTAINABILITY, 2023, 15 (07)
[40] PRisk-MM: a public sector risk management maturity model for Brazilian public organisations
De Lorena, A. L. F.
Costa, A. P. C. S.
JOURNAL OF RISK RESEARCH, 2024, 27 (01) : 46 - 62

← 1 2 3 4 5 →