A Framework for Information Security Governance and Management

被引：19

作者：

Carcary, Marian ^{[1
]}

Renaud, Karen ^{[2
]}

McLaughlin, Stephen ^{[3
,4
]}

O'Brien, Conor ^{[1
]}

机构：

[1] Maynooth Univ, Innovat Value Inst, Maynooth, Kildare, Ireland

[2] Univ Glasgow, Glasgow G12 8QQ, Lanark, Scotland

[3] Maynooth Univ, R&D, Innovat Value Inst, Maynooth, Kildare, Ireland

[4] Maynooth Univ, IT Competence Ctr, Maynooth, Kildare, Ireland

来源：

IT PROFESSIONAL | 2016年 / 18卷 / 02期

关键词：

capability maturity; information security governance; information security management; IT-CMF;

D O I：

10.1109/MITP.2016.27

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The capability maturity framework presented helps organizations assess their maturity state and identify problem areas. It addresses the technical, process, and human aspects of information security and provides guidelines for implementing information security governance and management processes.

引用

页码：22 / 30

页数：9

共 50 条

[41] MAVEN Information Security Governance, Risk Management, and Compliance (GRC): Lessons Learned
Takamura, Eduardo
Gomez-Rosa, Carlos
Mangum, Kevin
Wasiak, Fran
2014 IEEE AEROSPACE CONFERENCE, 2014,
[42] AN EMPIRICAL STUDY INTO INFORMATION SECURITY GOVERNANCE FOCUS AREAS AND THEIR EFFECTS ON RISK MANAGEMENT
Yaokumah, Winfred
Brown, Steven
2014 ANNUAL GLOBAL ONLINE CONFERENCE ON INFORMATION AND COMPUTER TECHNOLOGY, 2014, : 42 - 49
[43] Governance and Management of Organizations with Cloud Supported Services Recommendations for Risks of Information Security
Silva, Elcelina
Soares, Bruno Horta
2018 13TH IBERIAN CONFERENCE ON INFORMATION SYSTEMS AND TECHNOLOGIES (CISTI), 2018,
[44] Information Security Governance in Colleges and Universities
Wang, Jia
4TH INTERNATIONAL CONFERENCE ON ECONOMICS AND MANAGEMENT (ICEM), 2017, : 696 - 699
[45] Information security governance in the electricity industry
de Oliveira, Igor Antonio Magalhaes
Mexas, Mirian Picinini
Machado, Elaine Mara Marcal
Drumond, Geisa Meirelles
BRAZILIAN JOURNAL OF OPERATIONS & PRODUCTION MANAGEMENT, 2022, 19 (01):
[46] Information security governance: Due care
von Solms, Rossouw
von Solms, S. H. Basie
COMPUTERS & SECURITY, 2006, 25 (07) : 494 - 497
[47] The role of information security in corporate governance
Lindup, K
COMPUTERS & SECURITY, 1996, 15 (06) : 477 - 485
[48] Information technology and the governance of social security
Henman, P
Adler, M
CRITICAL SOCIAL POLICY, 2003, 23 (02) : 139 - 164
[49] Obstacles to Implementation of Information Security Governance
Lidster, William W.
Rahman, Shawon S. M.
2018 17TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (IEEE TRUSTCOM) / 12TH IEEE INTERNATIONAL CONFERENCE ON BIG DATA SCIENCE AND ENGINEERING (IEEE BIGDATASE), 2018, : 1826 - 1831
[50] Information security: A corporate governance issue
Kritzinger-von Solms, E
Strous, LAM
INTEGRITY AND INTERNAL CONTROL IN INFORMATION SYSTEMS V, 2003, 124 : 115 - 133

← 1 2 3 4 5 →