Ändra sökning
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Discovering Information Security Management
Stockholms universitet, Samhällsvetenskapliga fakulteten, Institutionen för data- och systemvetenskap.
2005 (Engelska)Doktorsavhandling, monografi (Övrigt vetenskapligt)
Abstract [en]

This thesis is concerned with issues relating to the management of information security in organisations, motivated by the need for cost-efficient information security.

It is based on the assumption that: in order to achieve cost-efficient information security, the point of departure must be knowledge about the empirical reality in which the management of information security takes place.

The data gathering instruments employed are questionnaires with open-ended questions and unstructured research interviews. The empirical material is analysed, and conclusions are drawn following the principles of Grounded Theory. Data sources are professionals in the area of information security management, including information security consultants (n=13), certification auditors (n=8), and information security managers (n=8).

The main contributions are: an integrated model illustrating the experts’ perceptions concerning the objectives, actors, resources, threats, and countermeasures of information security management; a framework for the evaluation, formation, and implementation of information security management systems; a new approach for the evaluation of information security in organisations; a set of success factors concerning the formation of information security management systems; and a problem inventory concerning the value and assessment of information security education and training.

Ort, förlag, år, upplaga, sidor
Kista: Institutionen för data- och systemvetenskap (tills m KTH) , 2005. , 300 s.
Serie
Report Series / Department of Computer & Systems Sciences, ISSN 1101-8526 ; 05-010
Nyckelord [en]
Information Security, Information Systems Security, Management
Nationell ämneskategori
Systemvetenskap
Identifikatorer
URN: urn:nbn:se:su:diva-718ISBN: 9171550755 (tryckt)OAI: oai:DiVA.org:su-718DiVA: diva2:197791
Disputation
2005-11-22, sal C, Electrum, Isafjordsgatan 20-26, Kista, 13:00
Opponent
Handledare
Tillgänglig från: 2005-11-01 Skapad: 2005-11-01Bibliografiskt granskad

Open Access i DiVA

Fulltext saknas

Av organisationen
Institutionen för data- och systemvetenskap
Systemvetenskap

Sök vidare utanför DiVA

GoogleGoogle Scholar

isbn
urn-nbn

Altmetricpoäng

isbn
urn-nbn
Totalt: 1853 träffar
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf