Information Security Governance Papers
|
Paper Title
|
A Responsibility Framework for Information Security
|
|
The Abstract of The Paper
|
This paper demonstrates that information security is more than a technical issue, through the development of an information security responsibility framework that shows consideration for strategic and legal issues as well. It is important that information security be viewed as both a governance challenge and a management responsibility. In order to achieve this this paper addresses information security governance and the board’s participation in directing and controlling security efforts. Furthermore information security management is addressed in order to demonstrate how information security should be implemented. Once a comprehensive picture of the information security function has been established, the roles of various individuals in terms of information security are discussed and mapped out in the responsibility framework in order to demonstrate the true scope of an organizations information security function.
|
|
Web Link
|
http://www.springerlink.com/content/3x34538862686546/?p=c2a1e91eb5fb4b6f97976897ae9c2390&pi=2
|
Back To Information Security Governance Papers List