Governing Information Security in Conjunction with COBIT and ISO 27001
نویسندگان
چکیده
In this paper, after giving a brief definition of Information Security Management Systems (ISMS), ISO 27001, IT governance and COBIT, pros and cons of implementing only COBIT, implementing only IS
منابع مشابه
Standardization of Information Security Management System: ISO/IEC 27001: 2005, ITIL®, CoBIT®
Information is currently the most important asset of modern companies. Its security is therefore very important and becomes the top priority of each company. Unfortunately, there is no simple recipe providing 100 % security of information. A company must apply the best security procedures with the aim to achieve an appropriate level of its information security. This paper presents and compares ...
متن کاملIntegration of COBIT, Balanced Scorecard and SSE- CMM as a strategic Information Secur ity Management (ISM) framework
Abstr act The purpose of this study is to explore the integrated use of Control Objectives for Information Technology (COBIT) and Balanced Scorecard (BSC) frameworks for strategic information security management (ISM). The goal is to investigate the strengths, weaknesses, implementation techniques, and potential benefits of such an integrated framework. This integration is achieved by “bridging...
متن کاملImproving information security compliance - A process-oriented approach for managing organizational change
Enterprises typically have to comply with many different legal, regulatory and internal requirements. Particularly in the context of information processing, there are dedicated regulations which demand the protection of the information infrastructure. From the authors’ point of view, organizational aspects are thereby one of the most critical improvement areas. However, the related organization...
متن کاملThe Main Benefits of COBIT in a High Public Educational Institution - a Case Study
Currently, organizations move from the need to produce high rates of profitability, by the satisfaction of their customers, partners or employees, and by the maintenance of high levels of competitiveness to enable them to face competition and ensure their survival. With the evolution of Information Systems and the Information Technology, increasingly organizations based its activities on these ...
متن کاملInformation Security Management System Standards: A Comparative Study of the Big Five
-It cannot be denied that nowadays information is a very important asset for any modern organization. Therefore protecting its security is very important and becoming a top priority for many organizations. Unfortunately there is no single formula that can guarantee 100% of information security. Therefore there is a need for a set of benchmarks or standards to ensure the best security practices ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- CoRR
دوره abs/1108.2150 شماره
صفحات -
تاریخ انتشار 2011