A Framework for Information Security Governance and Management

被引：19

作者：

Carcary, Marian ^{[1
]}

Renaud, Karen ^{[2
]}

McLaughlin, Stephen ^{[3
,4
]}

O'Brien, Conor ^{[1
]}

机构：

[1] Maynooth Univ, Innovat Value Inst, Maynooth, Kildare, Ireland

[2] Univ Glasgow, Glasgow G12 8QQ, Lanark, Scotland

[3] Maynooth Univ, R&D, Innovat Value Inst, Maynooth, Kildare, Ireland

[4] Maynooth Univ, IT Competence Ctr, Maynooth, Kildare, Ireland

来源：

IT PROFESSIONAL | 2016年 / 18卷 / 02期

关键词：

capability maturity; information security governance; information security management; IT-CMF;

D O I：

10.1109/MITP.2016.27

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The capability maturity framework presented helps organizations assess their maturity state and identify problem areas. It addresses the technical, process, and human aspects of information security and provides guidelines for implementing information security governance and management processes.

引用

页码：22 / 30

页数：9

共 50 条

[21] SIMOnt: A Security Information Management Ontology Framework
Abulaish, Muhammad
Nabi, Syed Irfan
Alghathbar, Khaled
Chikh, Azeddine
SECURE AND TRUST COMPUTING, DATA MANAGEMENT, AND APPLICATIONS, 2011, 186 : 201 - +
[22] Information Security Governance
Williams, Paul
2001, Elsevier Ltd (06): : 60 - 70
[23] Information Security Management Framework for Web Applications Development
Soares, Cleberton Carvalho
da Silva, Paulo Caetano
Soares, Natanael Dantas
JOURNAL OF INFORMATION ASSURANCE AND SECURITY, 2018, 13 (03): : 98 - 108
[24] Proposed security management framework for the global information community
Shepard-Patterson & Assoc.
J Eng Appl Sci, (220-227):
[25] A proposed security management framework for the global information community
Coyle, J
Demerest, J
McAllister, R
SIXTH IEEE WORKSHOPS ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES, PROCEEDINGS, 1997, : 220 - 227
[26] Information security management objectives and practices: A parsimonious framework
Department of Computer Information Systems, University of Central Missouri, Warrensburg, MO, United States
不详
不详
Inf. Manage. Comput. Secur., 2008, 3 (251-270):
[27] An integrated system for information security management with the unified framework
Yang, Tsung-Han
Ku, Cheng-Yuan
Liu, Man-Nung
JOURNAL OF RISK RESEARCH, 2016, 19 (01) : 21 - 41
[28] Information security management: A hierarchical framework for various approaches
Eloff, MM
von Solms, SH
COMPUTERS & SECURITY, 2000, 19 (03) : 243 - 256
[29] An audit framework to support information system security management
Pereira, Teresa
Santos, Henrique M. Dinis
INTERNATIONAL JOURNAL OF ELECTRONIC SECURITY AND DIGITAL FORENSICS, 2010, 3 (03) : 265 - 277
[30] Applying information security governance
Moulton, R
Coles, RS
COMPUTERS & SECURITY, 2003, 22 (07) : 580 - 584

← 1 2 3 4 5 →