Information Security Governance - Compliance management vs operational management

被引:38
|
作者
von Solms, SH [1 ]
机构
[1] Univ Johannesburg, Dept Acad Informat Technol, ZA-2006 Johannesburg, South Africa
来源
COMPUTERS & SECURITY | 2005年 / 24卷 / 06期
关键词
information security; information security management; information technology governance; corporate governance; operational management; compliance management; risk management;
D O I
10.1016/j.cose.2005.07.003
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper discusses the difference that should exist between Information Security Operational Management and Information Security Compliance Management. The paper argues that for good Information Security Governance, good IT Governance and good Corporate Governance, these two dimensions of Information Security Management should be totally separate, and housed in separate departments. (C) 2005 Elsevier Ltd. All rights reserved.
引用
收藏
页码:443 / 447
页数:5
相关论文
共 50 条
  • [11] The impact of information security management practices on organisational agility
    Zaini, Muhamad Khairulnizam
    Masrek, Mohamad Noorman
    Sani, Mad Khir Johari Abdullah
    INFORMATION AND COMPUTER SECURITY, 2020, 28 (05) : 681 - 700
  • [12] Security practices of accounting information and its contribution to the corporate governance compliance requirement
    Solana-Gonzalez, Pedro
    Souza Fontana, Karen Hackbart
    Vanti, Adolfo Alberto
    REVISTA GESTAO & TECNOLOGIA-JOURNAL OF MANAGEMENT AND TECHNOLOGY, 2019, 19 (02): : 149 - 174
  • [13] Better Information Security Management in Municipalities
    De lange, Joshua
    Von Solms, Rossouw
    Gerber, Mariana
    2015 IST-AFRICA CONFERENCE, 2015,
  • [14] Information Security Management Success Factors
    Zammani, Mazlina
    Razali, Rozilawati
    ADVANCED SCIENCE LETTERS, 2016, 22 (08) : 1924 - 1929
  • [15] An Ontological Approach to Information Security Management
    Pereira, Teresa
    Santos, Henrique
    PROCEEDINGS OF THE 7TH INTERNATIONAL CONFERENCE ON INFORMATION WARFARE AND SECURITY, 2012, : 368 - 375
  • [16] Information Security Management in Local Government
    De Lange, Joshua
    Von Solms, Rossouw
    Gerber, Mariana
    2016 IST-AFRICA WEEK CONFERENCE, 2016,
  • [17] Visualization of information security management processes
    Miloslavskaya N.G.
    Tolstoy A.I.
    1600, National Research Nuclear University (09): : 117 - 136
  • [18] Information security management: A bibliographic review
    Cardenas-Solano, Leidy-Johanna
    Martinez-Ardila, Hugo
    Becerra-Ardila, Luis-Eduardo
    PROFESIONAL DE LA INFORMACION, 2016, 25 (06): : 931 - 948
  • [19] Unrealistic optimism on information security management
    Rhee, Hyeun-Suk
    Ryu, Young U.
    Kim, Cheong-Tag
    COMPUTERS & SECURITY, 2012, 31 (02) : 221 - 232
  • [20] Information security management in SOCs and SICs
    Miloslavskaya, Natalia
    JOURNAL OF INTELLIGENT & FUZZY SYSTEMS, 2018, 35 (03) : 2637 - 2647
12345