Integration of ITIL V3, ISO 20000 &amp; ISO 27001:2013forIT Services and Security Management System

Faruq, Barra Al

doi:10.30534/ijatcse/2020/157932020

Cited by 9 publications

(16 citation statements)

References 6 publications

(7 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Customer satisfaction is one of the main outcomes measured. Customer satisfaction is the result of the goods and services of the business are equal to or greater than the requirements of the customer [3]. The degree of customer satisfaction can be calculated on the basis of five key factors to be regarded by a company, namely a) the product, customers are satisfied if the goods are reliable and durable.…”

Section: Introductionmentioning

confidence: 99%

Analysis correlation of the Implementation Framework COBIT 5, ITIL V3 and ISO 27001 for ISO 10002 Customer satisfaction

Bawono

Soetomo

Apriatin

2021

Annual Conference on Management and Information Technology

View full text Add to dashboard Cite

This study aims to determine and provide information about the corellation of COBIT 5, ITILV3 ,and ISO 27001 for customer satisfaction. This study uses a causal associative method with a quantitative approach. The population of this research is all customers of company Quota Broadband Internet. The sampling technique in this research is probability sampling technique through simple random sampling. The research sample was 135 customers. The results showed that there was an corellation of COBIT 5 (6.Customer-oriented service culture ), ITIL V3 (Service Operation 4.2 Incident management), and ISO 27001 (A.16 Information security incident management) for 10002 (3.4 customer satisfaction). The biggest influence is COBIT 5 on ISO 27001 with a T statistic of 6,960 and a P value of 0,000.

show abstract

Section: Introductionmentioning

confidence: 99%

Analysis correlation of the Implementation Framework COBIT 5, ITIL V3 and ISO 27001 for ISO 10002 Customer satisfaction

Bawono

Soetomo

Apriatin

2021

Annual Conference on Management and Information Technology

View full text Add to dashboard Cite

show abstract

“…As such, the ITIL ISM looks to align IT and business security to ensure that information security elements (availability, integrity, confidentiality authenticity and nonrepudiation) are well managed in all services and also in the service management activities (BMC, 2016). Essentially, the ITIL ISM which is premised on the ISO 27001 standard specifies requirements to establish, implement, maintain and continually improve an ISMS within the context of an organization by assessing and treating information security risks to fit the needs of the organization (Al Faruq et al, 2020). Certification to the ISO 27001 Standard is recognized worldwide to indicate that an ISM system is aligned with information security best practices (Culot et al, 2021;Pawar and Palivela, 2022).…”

Section: The Itil Information Security Management Frameworkmentioning

confidence: 99%

A service lens on cybersecurity continuity and management for organizations’ subsistence and growth

Thomas

Sule²

2022

OCJ

View full text Add to dashboard Cite

PurposeThis paper proposes a holistic, proactive and adaptive approach to cybersecurity from a service lens, given the continuously evolving cyber-attack techniques, threat and vulnerability landscape that often overshadow existing cybersecurity approaches.Design/methodology/approachThrough an extensive literature review of relevant concepts and analysis of existing cybersecurity frameworks, standards and best practices, a logical argument is made to produce a dynamic end-to-end cybersecurity service system model.FindingsCyberspace has provided great value for businesses and individuals. The COVID-19 pandemic has significantly motivated the move to cyberspace by organizations. However, the extension to cyberspace comes with additional risks as traditional protection techniques are insufficient and isolated, generally focused on an organization's perimeter with little attention to what is out there. More so, cyberattacks continue to grow in complexity creating overwhelming consequences. Existing cybersecurity approaches and best practices are limited in scope, and implementation strategies, differing in strength and focus, at different levels of granularity. Nevertheless, the need for a proactive, adaptive and responsive cybersecurity solution is recognized.Originality/valueThis paper presents a model that promises proactive, adaptive and responsive end-to-end cybersecurity. The proposed cybersecurity continuity and management model premised on a service system, leveraging on lessons learned from existing solutions, takes a holistic analytical view of service activities from source (service provider) to destination (Customer) to ensure end-to-end security, whether internally (within an organization) or externally.

show abstract

“…Tarn et al (2009), Rezakhani et al (2011), Tsohou et al (2010, Pardo et al (2012), Leszczyna (2019) and Al-Karaki et al (2020) present a framework for the categorization of various ISS standards; along the same lines, Mesquida et al (2014) and Pardo et al (2013Pardo et al ( , 2016 approach ISO standards related to software quality, IT service management and ISS. Seven papers (Susanto et al, 2011;Montesino et al, 2012;Sheikhpour and Modiri, 2012a, b;Mukhtar and Ahmad, 2014;Bettaieb et al, 2019;Faruq et al, 2020) Similar integration issues are analyzed in the literature with respect to other Management system standards, especially other ISO management systems. Overall, the potential benefits of management system integration have been described in terms of implementation synergies (e.g.…”

Section: Characteristics Of the Literaturementioning

confidence: 99%

“…Tarn et al (2009), Rezakhani et al (2011), Tsohou et al (2010), Pardo et al (2012), Leszczyna (2019) and Al-Karaki et al (2020) present a framework for the categorization of various ISS standards; along the same lines, Mesquida et al (2014) and Pardo et al (2013, 2016) approach ISO standards related to software quality, IT service management and ISS. Seven papers (Susanto et al , 2011; Montesino et al , 2012; Sheikhpour and Modiri, 2012a, b; Mukhtar and Ahmad, 2014; Bettaieb et al , 2019; Faruq et al , 2020) focus specifically on the alignment between the security controls recommended by ISO/IEC 27001 with other standards. Beckers et al (2016), Bounagui et al (2019), Leszczyna (2019) and Ganji et al (2019) explore integration issues.…”

Section: Thematic Findingsmentioning

confidence: 99%

“…(2013,2016) approach ISO standards related to software quality, IT service management and ISS. Seven papers (Susanto et al, 2011;Montesino et al, 2012;Sheikhpour and Modiri, 2012a, b;Mukhtar and Ahmad, 2014;Bettaieb et al, 2019;Faruq et al, 2020) Similar integration issues are analyzed in the literature with respect to other Management system standards, especially other ISO management systems. Overall, the potential benefits of management system integration have been described in terms of implementation synergies (e.g.…”

Section: Thematic Findingsmentioning

confidence: 99%

See 1 more Smart Citation

The ISO/IEC 27001 information security management standard: literature review and theory-based research agenda

Culot

Nassimbeni

Podrecca

et al. 2021

TQM

View full text Add to dashboard Cite

PurposeAfter 15 years of research, this paper aims to present a review of the academic literature on the ISO/IEC 27001, the most renowned standard for information security and the third most widespread ISO certification. Emerging issues are reframed through the lenses of social systems thinking, deriving a theory-based research agenda to inspire interdisciplinary studies in the field.Design/methodology/approachThe study is structured as a systematic literature review.FindingsResearch themes and sub-themes are identified on five broad research foci: relation with other standards, motivations, issues in the implementation, possible outcomes and contextual factors.Originality/valueThe study presents a structured overview of the academic body of knowledge on ISO/IEC 27001, providing solid foundations for future research on the topic. A set of research opportunities is outlined, with the aim to inspire future interdisciplinary studies at the crossroad between information security and quality management. Managers interested in the implementation of the standard and policymakers can find an overview of academic knowledge useful to inform their decisions related to implementation and regulatory activities.

show abstract

Integration of ITIL V3, ISO 20000 & ISO 27001:2013forIT Services and Security Management System

Cited by 9 publications

References 6 publications

Analysis correlation of the Implementation Framework COBIT 5, ITIL V3 and ISO 27001 for ISO 10002 Customer satisfaction

Analysis correlation of the Implementation Framework COBIT 5, ITIL V3 and ISO 27001 for ISO 10002 Customer satisfaction

A service lens on cybersecurity continuity and management for organizations’ subsistence and growth

The ISO/IEC 27001 information security management standard: literature review and theory-based research agenda

Contact Info

Product

Resources

About