Please use this identifier to cite or link to this item:
http://repositorio.ufc.br/handle/riufc/69533
Type: | Artigo de Evento |
Title: | Towards value-based information security management monitoring |
Authors: | Lima, Alberto Sampaio Souza, José Neuman de Castelo Branco Júnior, Eliseu Ribas, Maristella |
Keywords: | Information security management;Fuzzy models;Continual service improvement |
Issue Date: | 2013 |
Publisher: | International Symposium on Integrated Network Management |
Citation: | LIMA, A. S. et al. Towards value-based information security management monitoring. In: INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT, 2013, Gante. Anais... Gante, 2013. p. 1260-1267. |
Abstract: | The main objective of Information Security Management (ISM) is to align IT security with business security in all service and service management activities within an integrated strategy with corporate IT governance. To obtain a full IT-business alignment is still a challenge to managers. In continual service improvement (CSI) related activities, such as ISM, this problem is even more apparent. The actual impact upon business, due to lower quality results in ISM, is not apparent to top level executives. This article discusses an integration of ISM with a CSI approach and illustrates its benefits and gains. We proposed a value-based framework to evaluate the ISM process in a quantitative manner, whereby estimating the ISM value and quality indicators which can be used to input ISM and IT services performance in strategic planning tools. We discuss and illustrate the cause effect relation and innovations of this idea to common ISM practices. |
URI: | http://www.repositorio.ufc.br/handle/riufc/69533 |
Appears in Collections: | DETE - Trabalhos apresentados em eventos |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
2013_eve_aslima.pdf | 388,45 kB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.