Identifying factors of "organizational information security management"

@article{Singh2014IdentifyingFO,
  title={Identifying factors of "organizational information security management"},
  author={Abhishek Narain Singh and M. P. Gupta and Amitabh Ojha},
  journal={J. Enterp. Inf. Manag.},
  year={2014},
  volume={27},
  pages={644-667}
}
Purpose – Despite many technically sophisticated solutions, managing information security has remained a persistent challenge for organizations. Emerging IT/ICT media have posed new security challenges to business information and information assets. It is felt that technical solutions alone are not sufficient to address the information security challenge. It has been argued that organizations also need to consider the management aspects of information security. Consequently, literature… 

Organizational practices as antecedents of the information security management performance

The results suggest that an improved performance of information security in the industrial SMEs requires innovative practices to foster knowledge sharing among employees.

An Empirical Study of Information Security Management Success Factors

This study used qualitative method where it adopted semi-structured interviews involving nine practitioners and validated several ISM factors and their elements that contribute to the success of ISM.

Factors Contributing to the Success of Information Security Management Implementation

The objective of this paper is to identify ISM success factors and their elements through a large-scale survey to guide practitioners in planning and refining ISM implementation in their organisations.

The Role of Organizational Factors to the Effectiveness of ISMS Implementation in Malaysian Public Sector

Many organizations have initiated efforts to manage the security of their information by implementing an Information Security Management System (ISMS). ISMS is a set of guiding principles for

Organizational Factors Affecting Information Security Management Practices in Private Sector Organizations

The results suggest that the more experienced and aware the staff get, the less of damages that will occur in the company, also it will enhance the organization overall information security policies.

Information Security Management Practices: Case Studies from India

In recent years, information security has gained attention in organizations across diverse businesses and sectors. Primary reasons of this can be the new and innovative ways of information handling

Key Success Factors of Information Systems Security

This research, based on comprehensive literature review, summarizes most cited key success factors of information systems security identified in scientific articles indexed in relevant databases, of which the top three success factors were management support, information security policy and information security education, training and awareness.

Strategic value alignment for information security management: a critical success factor analysis

The results suggest that with business alignment, top management support and organizational awareness of security risks and controls, effective information security controls can be developed, resulting in successful information security management.

Obstacles to Implementation of Information Security Governance

  • William LIdsterShawon S. M. Rahman
  • Computer Science, Political Science
    2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)
  • 2018
A critical look at literature reveals that practitioners do not have guidance on how to implement security governance, security governance models and methods are failing to address the dynamic environment that security works within, and there lacks a method to measure governance, alignment, and the proposed value that governance brings.
...

References

SHOWING 1-10 OF 91 REFERENCES

Management's Role in Information Security in a Cyber Economy

This article presents an organizational security approach that senior managers can use as a roadmap to initiate security plans and policies and audit their implementation.

An integrated view of human, organizational, and technological challenges of IT security management

The main challenges that IT security practitioners face in their organizations are determined, including the interplay among human, organizational, and technological factors, to build an integrated framework of security challenges.

Organizational factors to the effectiveness of implementing information security management

There were significant impacts of organizational factors, including IT competence of business managers, environment uncertainty, industry type, and organization size, on the effectiveness of implementing ISM.

Information security policy: An organizational-level process model

An empirical study of information security policy on information security elevation in Taiwan

The empirical results show that some organizational characteristics (business type and MIS/IS department size) might be good predictors for the ISP adoption and that the functions, contents, implementation and procedures of an ISP may significantly contribute to managers' perceived elevation of information security.

Management versus security specialists: an empirical study on security related perceptions

Empirical evidence gathered justifies theoretical claims that personnel from general management have different perspectives towards network security than personnel from the ne...

Information security management objectives and practices: a parsimonious framework

A framework for ISM is put forth based on the development of an a priori set of objectives and practices as suggested by literature, standards, and reports found in academia and practice and the examination of interrelationships between the objective and practices.

An integrated system theory of information security management

It is suggested that an integrated system theory is useful for understanding Information security management, explaining information security management strategies, and predicting management outcomes.

Exploring organizational culture for information security management

Examining the influence of organization culture on the effectiveness of implementing information security management (ISM) found that the control‐oriented organizational culture traits, effectiveness and consistency, have strong effect on the ISM principles of confidentiality, integrity, availability and accountability.
...