Show simple item record

dc.contributor.authorAlshaikh, Moneeren_NZ
dc.contributor.authorAhmad, Atifen_NZ
dc.contributor.authorMaynard, Sean Ben_NZ
dc.contributor.authorChang, Shantonen_NZ
dc.date.accessioned2014-12-04T01:20:21Z
dc.date.available2014-12-04T01:20:21Z
dc.date.copyright2014en_NZ
dc.date.issued2014-12-08en_NZ
dc.identifier.citationProceedings of the 25th Australasian Conference on Information Systems, 8th - 10th December, Auckland, New Zealand
dc.identifier.isbn978-1-927184-26-4
dc.identifier.urihttp://hdl.handle.net/10292/8174
dc.description.abstractThere is growing recognition of the role that management performs in protecting organisational information. However, our review of the academic and professional literatures did not find an empirically sound and coherent view of the range of management activities that can be applied as part of an information security program. As a result, organisations have insufficient guidance on what methods can be implemented to meet security objectives. Further, organisations have no empirically evidenced benchmark against which management practices can be assessed. This research project aims to develop a rigorous, comprehensive and empirically evidenced taxonomy of information security management practices to provide organisations with comprehensive guidance. In this paper we report on the first phase of the development of the taxonomy. In this phase we conduct a comprehensive literature review to identify the range of ISMPs in the literature and suggest possible ways of classifying management level activity.en_NZ
dc.publisherACIS
dc.titleTowards a Taxonomy of Information Security Management Practices in Organisationsen_NZ
dc.typeConference Contribution
dc.rights.accessrightsOpenAccess


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record