Change search
ReferencesLink to record
Permanent link

Direct link
Säkerhetsstyrning inom den Finansiella Sektorn: En Studie på Best Practice hos Tre Svenska Banker
KTH, School of Electrical Engineering (EES), Industrial Information and Control Systems.
2012 (Swedish)Independent thesis Advanced level (professional degree), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

For organizations that handle sensitive information, IT governance and information security are necessities in order to maintain credibility and to conduct its business efficiently. There are several known processes to increase security governance – which is a fusion of information security and IT governance.

This master thesis examines if organizations use recognized processes and if it in that case would lead to higher security. The study is qualitative and conducted in the financial sector and based on Best Practice frameworks of the security governance in Swedish banks. Data collection was done through interviews and surveys that were triangulated to get a gathered picture of the quality of the security governance activities. The questionnaire surveys were graded according to the Likert scale.

This work shows that banks use the processes described in the theory section, Chapter 3, and that they have adapted them to the business. The results from both the interviews and questionnaires show that Bank 3 has a high degree of security governance in the organization. This bank also had good cooperation and communication between the business and the IT side - they worked well aligned.

There are clear indications that show that the banks take the methods and processes described in the study into consideration, but that they were adapted to the banks' operations. It is important that business and IT find meeting places - both parties need to contribute with their expertise to achieve the best possible outcome - a safe basis for security governance.

Place, publisher, year, edition, pages
2012. , 55 p.
EES Examensarbete / Master Thesis, XR-EE-ICS 2012:013
Keyword [en]
IT Governance, IT Infrastructure, Information Security, Security
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
URN: urn:nbn:se:kth:diva-98863OAI: diva2:539610
Educational program
Master of Science in Engineering - Electrical Engineering
Available from: 2012-07-04 Created: 2012-07-04 Last updated: 2012-07-04Bibliographically approved

Open Access in DiVA

fulltext(1421 kB)170 downloads
File information
File name FULLTEXT01.pdfFile size 1421 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Mirbaz, Jamshid
By organisation
Industrial Information and Control Systems
Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar
Total: 170 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 150 hits
ReferencesLink to record
Permanent link

Direct link