A Conceptual Model for a Metric Based Framework for the Monitoring of Information Security Tasks' Efficiency

被引:5
|
作者
Sonmez, Ferda Ozdemir [1 ]
机构
[1] Univ Mahallesi, Middle East Tech Univ, Inst Informat, Dumlupinar Bulvari 1, TR-06800 Ankara, Turkey
来源
10TH INT CONF ON EMERGING UBIQUITOUS SYST AND PERVAS NETWORKS (EUSPN-2019) / THE 9TH INT CONF ON CURRENT AND FUTURE TRENDS OF INFORMAT AND COMMUN TECHNOLOGIES IN HEALTHCARE (ICTH-2019) / AFFILIATED WORKOPS | 2019年 / 160卷
关键词
Information Security Governance; Security; Efficiency; Metric; Productivity;
D O I
10.1016/j.procs.2019.09.459
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
Information Security Governance Systems are not adequate to measure the effectiveness and efficiency of security tasks for the enterprises. Although some of the systems offer ways for measurement, they still need the definition of measurement objectives and metrics. This study proposes a conceptual framework mode which has human and tool/process related metrics. This system also allows the collection of evidence data for security-related tasks and ways to motivate the security staff to provide a more productive environment. This system may be applied to any size of enterprise independent of its business domain or functions as long as the aim is to improve the effectiveness and efficiency of security-related tasks. (C) 2019 The Authors. Published by Elsevier B.V.
引用
收藏
页码:181 / 188
页数:8
相关论文
共 50 条
  • [1] Enterprise Information Systems Security: A Conceptual Framework
    Chaudhry, Peggy E.
    Chaudhry, Sohail S.
    Reese, Ronald
    Jones, Darryl S.
    RE-CONCEPTUALIZING ENTERPRISE INFORMATION SYSTEMS, 2012, 105 : 118 - +
  • [2] Information Systems Strategy and Security Policy: A Conceptual Framework
    Kamariotou, Maria
    Kitsios, Fotis
    ELECTRONICS, 2023, 12 (02)
  • [3] Security Model and Framework for Information Aggregation in Sensor Networks
    Manulis, Mark
    Schwenk, Joerg
    ACM TRANSACTIONS ON SENSOR NETWORKS, 2009, 5 (02)
  • [4] Study on Efficiency of Risk Management for Information Security Based on Transaction
    Lu, Zhigang
    Wang, Xiaozhen
    Liu, Baoxu
    Xu, Rongsheng
    PROCEEDINGS OF THE SECOND INTERNATIONAL SYMPOSIUM ON ELECTRONIC COMMERCE AND SECURITY, VOL II, 2009, : 356 - 360
  • [5] Towards a Model-driven based Security Framework
    Abdallah, Rouwaida
    Yakymets, Nataliya
    Lanusse, Agnes
    MODELSWARD 2015 PROCEEDINGS OF THE 3RD INTERNATIONAL CONFERENCE ON MODEL-DRIVEN ENGINEERING AND SOFTWARE DEVELOPMENT, 2015, : 639 - 645
  • [6] A Security Framework for Nationwide Health Information Exchange based on Telehealth Strategy
    B. B. Zaidan
    Ahmed Haiqi
    A. A. Zaidan
    Mohamed Abdulnabi
    M. L. Mat Kiah
    Hussaen Muzamel
    Journal of Medical Systems, 2015, 39
  • [7] A Security Framework for Nationwide Health Information Exchange based on Telehealth Strategy
    Zaidan, B. B.
    Haiqi, Ahmed
    Zaidan, A. A.
    Abdulnabi, Mohamed
    Kiah, M. L. Mat
    Muzamel, Hussaen
    JOURNAL OF MEDICAL SYSTEMS, 2015, 39 (05) : 1 - 19
  • [8] A Security Model Based on Information Self-feedback
    Huang Rongsheng
    Wu Renjie
    CEIS 2011, 2011, 15
  • [9] The Need, Use and Efficiency of Trustworthy Security Model in Cloud Computing for Information Assurance
    Bhamidipati, Kishore
    Shyam, Karanth S.
    2012 INTERNATIONAL CONFERENCE ON CLOUD COMPUTING TECHNOLOGIES, APPLICATIONS AND MANAGEMENT (ICCCTAM), 2012, : 69 - 73
  • [10] An integrated conceptual model for information system security risk management supported by enterprise architecture management
    Nicolas Mayer
    Jocelyn Aubert
    Eric Grandry
    Christophe Feltus
    Elio Goettelmann
    Roel Wieringa
    Software & Systems Modeling, 2019, 18 : 2285 - 2312
12345