Change search
ReferencesLink to record
Permanent link

Direct link
Discovering Information Security Management
Stockholm University, Faculty of Social Sciences, Department of Computer and Systems Sciences.
2005 (English)Doctoral thesis, monograph (Other academic)
Abstract [en]

This thesis is concerned with issues relating to the management of information security in organisations, motivated by the need for cost-efficient information security.

It is based on the assumption that: in order to achieve cost-efficient information security, the point of departure must be knowledge about the empirical reality in which the management of information security takes place.

The data gathering instruments employed are questionnaires with open-ended questions and unstructured research interviews. The empirical material is analysed, and conclusions are drawn following the principles of Grounded Theory. Data sources are professionals in the area of information security management, including information security consultants (n=13), certification auditors (n=8), and information security managers (n=8).

The main contributions are: an integrated model illustrating the experts’ perceptions concerning the objectives, actors, resources, threats, and countermeasures of information security management; a framework for the evaluation, formation, and implementation of information security management systems; a new approach for the evaluation of information security in organisations; a set of success factors concerning the formation of information security management systems; and a problem inventory concerning the value and assessment of information security education and training.

Place, publisher, year, edition, pages
Kista: Institutionen för data- och systemvetenskap (tills m KTH) , 2005. , 300 p.
Report Series / Department of Computer & Systems Sciences, ISSN 1101-8526 ; 05-010
Keyword [en]
Information Security, Information Systems Security, Management
National Category
Information Science
URN: urn:nbn:se:su:diva-718ISBN: 9171550755OAI: diva2:197791
Public defence
2005-11-22, sal C, Electrum, Isafjordsgatan 20-26, Kista, 13:00
Available from: 2005-11-01 Created: 2005-11-01Bibliographically approved

Open Access in DiVA

No full text

By organisation
Department of Computer and Systems Sciences
Information Science

Search outside of DiVA

GoogleGoogle Scholar
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 1588 hits
ReferencesLink to record
Permanent link

Direct link