skip to main content
Idioma:
Primo Search
Clear Search Box
Search in: Busca Geral
Busca Avançada
Busca por Índices

Information security management needs more holistic approach: A literature review

Soomro, Zahoor Ahmed ; Shah, Mahmood Hussain ; Ahmed, Javed

International journal of information management, 2016-04, Vol.36 (2), p.215-225 [Periódico revisado por pares]

Kidlington: Elsevier Ltd

Texto completo disponível

Citações Citado por
  • Título:
    Information security management needs more holistic approach: A literature review
  • Autor: Soomro, Zahoor Ahmed ; Shah, Mahmood Hussain ; Ahmed, Javed
  • Assuntos: Architecture (computers) ; Business ; Business information architecture ; Business IT alignment ; Cloud computing ; Computer architecture ; Computer information security ; Computer security ; Data integrity ; Human resource management ; Human resources ; Information architecture ; Information management ; Information security ; Information security policy ; Information technology ; Literature reviews ; Management ; Managerial practices ; Resource management ; Security management ; Studies ; Systematic
  • É parte de: International journal of information management, 2016-04, Vol.36 (2), p.215-225
  • Notas: ObjectType-Article-1
    SourceType-Scholarly Journals-1
    ObjectType-Feature-2
    content type line 23
  • Descrição: •This paper is aimed at synthesizing the existing literature to suggest that why a more holistic approach of information security management is needed in management context.•The paper entertains article on the related context for last ten years.•A rigorous method for literature search is used with predetermined inclusion and exclusion criteria.•At first more than 300 articles were downloaded for further processing and finally 39 articles were deemed to be relevant to the context under study.•The paper suggests that management role should be considered in information security management. Information technology has dramatically increased online business opportunities; however these opportunities have also created serious risks in relation to information security. Previously, information security issues were studied in a technological context, but growing security needs have extended researchers' attention to explore the management role in information security management. Various studies have explored different management roles and activities, but none has given a comprehensive picture of these roles and activities to manage information security effectively. So it is necessary to accumulate knowledge about various managerial roles and activities from literature to enable managers to adopt these for a more holistic approach to information security management. In this paper, using a systematic literature review approach, we synthesised literature related to management's roles in information security to explore specific managerial activities to enhance information security management. We found that numerous activities of management, particularly development and execution of information security policy, awareness, compliance training, development of effective enterprise information architecture, IT infrastructure management, business and IT alignment and human resources management, had a significant impact on the quality of management of information security. Thus, this research makes a novel contribution by arguing that a more holistic approach to information security is needed and we suggest the ways in which managers can play an effective role in information security. This research also opens up many new avenues for further research in this area.
  • Editor: Kidlington: Elsevier Ltd
  • Idioma: Inglês
Voltar para lista de resultados

  • Realização: ABCD-USP USP   Logos de Redes Sociais: Freepik

Buscando em bases de dados remotas. Favor aguardar.