Towards a Taxonomy of Information Security Management Practices in Organisations

Simple item page
dc.contributor.authorAlshaikh, Moneeren_NZ
dc.contributor.authorAhmad, Atifen_NZ
dc.contributor.authorMaynard, Sean Ben_NZ
dc.contributor.authorChang, Shantonen_NZ
dc.date.accessioned2014-12-04T01:20:21Z
dc.date.available2014-12-04T01:20:21Z
dc.date.copyright2014en_NZ
dc.date.issued2014en_NZ
dc.description.abstractThere is growing recognition of the role that management performs in protecting organisational information. However, our review of the academic and professional literatures did not find an empirically sound and coherent view of the range of management activities that can be applied as part of an information security program. As a result, organisations have insufficient guidance on what methods can be implemented to meet security objectives. Further, organisations have no empirically evidenced benchmark against which management practices can be assessed. This research project aims to develop a rigorous, comprehensive and empirically evidenced taxonomy of information security management practices to provide organisations with comprehensive guidance. In this paper we report on the first phase of the development of the taxonomy. In this phase we conduct a comprehensive literature review to identify the range of ISMPs in the literature and suggest possible ways of classifying management level activity.en_NZ
dc.identifier.citationProceedings of the 25th Australasian Conference on Information Systems, 8th - 10th December, Auckland, New Zealand
dc.identifier.isbn978-1-927184-26-4
dc.identifier.urihttps://hdl.handle.net/10292/8174
dc.publisherACIS
dc.rights.accessrightsOpenAccess
dc.titleTowards a Taxonomy of Information Security Management Practices in Organisationsen_NZ
dc.typeConference Contribution
Files
Original bundle
Now showing 1 - 1 of 1
Thumbnail Image
Name:
acis20140_submission_179.pdf
Size:
105.51 KB
Format:
Adobe Portable Document Format
Description:
Download
Collections
Proceedings of the 25th Australasian Conference on Information Systems, 8th - 10th December, Auckland, New Zealand