Please use this identifier to cite or link to this item: http://repositorio.ufc.br/handle/riufc/69533
Type: Artigo de Evento
Title: Towards value-based information security management monitoring
Authors: Lima, Alberto Sampaio
Souza, José Neuman de
Castelo Branco Júnior, Eliseu
Ribas, Maristella
Keywords: Information security management;Fuzzy models;Continual service improvement
Issue Date: 2013
Publisher: International Symposium on Integrated Network Management
Citation: LIMA, A. S. et al. Towards value-based information security management monitoring. In: INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT, 2013, Gante. Anais... Gante, 2013. p. 1260-1267.
Abstract: The main objective of Information Security Management (ISM) is to align IT security with business security in all service and service management activities within an integrated strategy with corporate IT governance. To obtain a full IT-business alignment is still a challenge to managers. In continual service improvement (CSI) related activities, such as ISM, this problem is even more apparent. The actual impact upon business, due to lower quality results in ISM, is not apparent to top level executives. This article discusses an integration of ISM with a CSI approach and illustrates its benefits and gains. We proposed a value-based framework to evaluate the ISM process in a quantitative manner, whereby estimating the ISM value and quality indicators which can be used to input ISM and IT services performance in strategic planning tools. We discuss and illustrate the cause effect relation and innovations of this idea to common ISM practices.
URI: http://www.repositorio.ufc.br/handle/riufc/69533
Appears in Collections:DETE - Trabalhos apresentados em eventos

Files in This Item:
File Description SizeFormat 
2013_eve_aslima.pdf388,45 kBAdobe PDFView/Open
Show full item record


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.