Information Security Best Practices: First Steps for Startups and SMEs

被引：6

作者：

Kaila, Urpo ^{[1
]}

Nyman, Linus ^{[2
,3
]}

机构：

[1] CSC, Secur, Kajaani, Finland

[2] Hanken Sch Econ, Helsinki, Finland

[3] Carleton Univ, TIM Program, Ottawa, ON, Canada

来源：

TECHNOLOGY INNOVATION MANAGEMENT REVIEW | 2018年 / 8卷 / 11期

关键词：

information security; cybersecurity; best practices; startups; SMEs; risk management;

D O I：

10.22215/timreview/1198

中图分类号：

C93 [管理学];

学科分类号：

12 ; 1201 ; 1202 ; 120202 ;

摘要：

This article identifies important first steps toward understanding and implementing information security. From the broad selection of existing best practices, we introduce a lightweight yet comprehensive security framework with four useful first steps: identifying assets and risks; protecting accounts, systems, clouds, and data; implementing a continuity plan; and monitoring and reviewing. This article is intended primarily for startups and less mature companies, but it is likely to be of interest to any reader seeking an introduction to basic information security concepts and principles as well as their implementation.

引用

页码：32 / 42

页数：11

共 50 条

[1] Challenges and Best Practices in Information Security Management
McLaughlin, Mark-David
Gogan, Janis
[J]. MIS QUARTERLY EXECUTIVE, 2018, 17 (03) : 237 - 262
[2] ISO 17799: "BEST PRACTICES" IN INFORMATION SECURITY MANAGEMENT?
Ma, Qingxiong
Pearson, J. Michael
[J]. COMMUNICATIONS OF THE ASSOCIATION FOR INFORMATION SYSTEMS, 2005, 15 : 577 - 591
[3] Best practices in information security protection for the utility enterprise
Klein, SA
[J]. 2002 IEEE POWER ENGINEERING SOCIETY WINTER MEETING, VOLS 1 AND 2, CONFERENCE PROCEEDINGS, 2002, : 636 - 637
[4] Information security best practices: 205 basic rules.
Gordon, R
[J]. LIBRARY JOURNAL, 2003, 128 (04) : 112 - 112
[5] Information systems security policy implementation in practice: from best practices to situated practices
Niemimaa, Elina
Niemimaa, Marko
[J]. EUROPEAN JOURNAL OF INFORMATION SYSTEMS, 2017, 26 (01) : 1 - 20
[6] Enhancing information security best practices sharing in virtual knowledge communities
Alhogail, Areej
[J]. VINE JOURNAL OF INFORMATION AND KNOWLEDGE MANAGEMENT SYSTEMS, 2021, 51 (04) : 550 - 572
[7] Best Practices for Internal Startups: Experiences From Practitioners in Finland
Koivulahti-Ojala, Mervi
Marijarvi, Jukka
[J]. PROCEEDINGS OF THE 11TH EUROPEAN CONFERENCE ON INNOVATION AND ENTREPRENEURSHIP, 2016, : 398 - 405
[8] Determinants of best HR practices in Chinese SMEs
Newman, Alexander
Sheikh, Abdullah Z.
[J]. JOURNAL OF SMALL BUSINESS AND ENTERPRISE DEVELOPMENT, 2014, 21 (03) : 414 - 430
[9] Implementation of ICO European best practices by SMEs
Ivashchenko, Alla
Polishchuk, Yevheniia
Britchenko, Igor
[J]. ECONOMIC ANNALS-XXI, 2018, 169 (1-2): : 67 - 71
[10] TQM best practices: Experiences of malaysian SMEs
Ab Rahman, MN
Tannock, JDT
[J]. TOTAL QUALITY MANAGEMENT & BUSINESS EXCELLENCE, 2005, 16 (04) : 491 - 503

← 1 2 3 4 5 →