A Framework for Information Security Governance and Management

Carcary, Marian; Renaud, Karen; McLaughlin, Stephen; O’Brien, Conor

doi:10.1109/mitp.2016.27

Cited by 30 publications

(28 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Since our study focuses on the second type of approaches described above, frameworks that provide an assessment of the information security management capabilities are reviewed in the following [29] presented a framework for the assessment of Information Security Governance and Management (ISGM) maturity, consisting of six building blocks (technical security, resource management, risk control, data administration, business continuity management). The framework is a component of a broader IT-CMF (IT Capability Maturity) framework and enables organisations to self-assess the maturity of each building-block and calculate average maturity score.…”

Section: Related Workmentioning

confidence: 99%

A real-world information security performance assessment using a multidimensional socio-technical approach

2020

View full text Add to dashboard Cite

Measuring the performance of information security is an essential part of the information security management system within organisations. Studies in the past mainly focused on establishing qualitative measurement approaches. Since these can lead to ambiguous conclusions, quantitative metrics are being increasingly proposed as a useful alternative. Nevertheless, the literature on quantitative approaches remains scarce. Thus, studies on the evaluation of information security performance are challenging, especially since many approaches are not tested in organisational settings. The paper aims to validate the model used for evaluating the performance of information security management system through a multidimensional socio-technical approach, in a real-world settings among medium-sized enterprises in Slovenia. The results indicate that information security is strategically defined and compliant, however, measures are primarily implemented at technical and operational levels, while its strategic management remains underdeveloped. We found that the biggest issues are related to information resources and risk management, where information security measurement-related activities proved to be particularly problematic. Even though enterprises do possess certain information security capabilities and are aware of the importance of information security, their current practices make it difficult for them to keep up with the fast-paced technological and security trends.

show abstract

Section: Related Workmentioning

confidence: 99%

A real-world information security performance assessment using a multidimensional socio-technical approach

2020

View full text Add to dashboard Cite

show abstract

“…Beginning with the addition of management guidelines in 1998, COBIT is now being used increasingly as a framework for IT governance. Recent research suggests that certain characteristics of IT governance contribute to more effective alignment and execution of IT programs, including security governance [16], [17].…”

Section: Related Workmentioning

confidence: 99%

An Effective Digital System for Intelligent Financial Environments

Zhang

Chen

et al. 2019

IEEE Access

View full text Add to dashboard Cite

A good set of the financial system could take care of all accounting entries and their impacts on the whole intelligent financial environment. The total flow of money and total expenditures will be reflected here. The intelligent financial system can improve the utilization of data, increase the work efficiency of financial personnel, and increase the security of financial processing services. This system could help the managers make their important financial decisions, financial budgeting, and so on. They can know about the financial conditions at any time. Based on the collection and processing of financial data, we design and analyze the related financial system to carry out the intelligent property of the financial environments. The system extends the quality of financial reporting, SOX compliance, and internal controls in a financial system, including credit management, revenue recognition, bad debts allowance. Once there is an early warning in the financial system, our proposed enhanced system could give a fast early response, and bridge a positive linkage about the planning department, finance department, and top managers, which could avoid potential exposure to bad debts. This system guarantees that the credible customers are selected, and avoid the potential risk of bad debts are incurred by a loose credit limit. It strengthens the preventive control over aging receivables management and detects the potential risk of bad debts in the earlier system alert.

show abstract

“…With the development of civilization, more and more scholars focus on the public affairs openness. Some scholars give a framework for information security governance and professional (Carcary et al 2016), some scholars suggest exploring central themes in open government data and freedom of information research to realize the liberation of public data (Afful-Dadzie 2017), some scholars even discuss the latitude of information management in local government (Syväjärvi et al 2017). The government affair has always been a crucial part of government work in the Guangdong Province.…”

Section: The Background Of the Government Affairs Opennessmentioning

confidence: 99%

On the Public Affairs Openness in Chinese Local Government: A Case Study in Guangzhou

Xu¹,

Li²

2018

Proceedings of the 10th International RAIS Conference on Social Sciences and Humanities (RAIS 2018)

View full text Add to dashboard Cite

With the development of civilization, more and more citizens began to engage in public affairs, and it greatly pushed the government to pay much attention to building a transparency government. In light of this background, the public affairs openness becomes a hot topic not only on the theoretical research level but also in the government's practical sphere. In 2015, we held a cooperative research program with Haizhu District government in Guangzhou, which mainly focuses on the public affairs openness in Chinese local government. Then, we describe a case study on the Haizhu District government. Based on the first stage investigation, we found that the Haizhu District government's public affairs openness can be improved, or is just in the very beginning. Public affairs openness demands should be led by the citizen's desire instead of the upper-level government. Hence, the Haizhu District government should transform the whole public affairs openness model from the bureaucracy guiding style to the citizen guiding way.

show abstract

A Framework for Information Security Governance and Management

Cited by 30 publications

References 7 publications

A real-world information security performance assessment using a multidimensional socio-technical approach

A real-world information security performance assessment using a multidimensional socio-technical approach

An Effective Digital System for Intelligent Financial Environments

On the Public Affairs Openness in Chinese Local Government: A Case Study in Guangzhou

Contact Info

Product

Resources

About