Information Security Governance Papers
|
Paper Title
|
A Meta-process for Information Security Risk Management
|
|
The Abstract of The Paper
|
Information security risk management (ISRM) is a major concern of organizations worldwide. Although the number of existing ISRM methodologies is enormous, in practice a lot of resources are invested by organizations in creating new ISRM methodologies in order to capture more accurately the risks of their complex information systems. This is a crucial knowledge-intensive process for organizations, but in most cases it is addressed in an ad hoc manner. The existence of a systematic approach for the development of new or improved ISRM methodologies would enhance the effectiveness of the process. In this paper we propose a systematic meta-process for developing new, or improved ISRM methods. We also present the specifications for a collaboration and knowledge-sharing platform supporting a virtual intra-organizational cross-disciplinary team, which aims at improving its ISRM methodologies by adopting the proposed meta-process.
|
|
Web Link
|
http://www.springerlink.com/content/v601181jx05n23q5/?p=66b75aff5ed64ed39e2cfed6e199586f&pi=139
|
Back To Information Security Governance Papers List