Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
IT Security Risk Management Model for Cloud Computing: a Need for a New Escalation Approach
Stockholm University, Faculty of Social Sciences, Department of Computer and Systems Sciences.
Stockholm University, Faculty of Social Sciences, Department of Computer and Systems Sciences.
2013 (English)In: International Journal of E-Entrepreneurship and Innovation, ISSN 1947-8585, Vol. 4, no 4, 1-19 p.Article in journal (Refereed) Published
Abstract [en]

We combined ISO 27005 framework for IT Security Risk Management with NIST Multitier framework. With this combined framework we create a new approach to IT Security Risk Management where IT Security Risk Management is place at the strategic, tactical and operational levels of an organizational. In this paper we concentrate on the monitoring and communication steps of IT Security Risk Management and especially escalation of new IT Security Incidents. We present a first draft to an IT Security Risk Escalation Capability Maturity Model based on ISACA┬┤s Risk IT Framework. Finally we apply the approach to typical cloud computing environment as a first step to evaluate this new approach.

Place, publisher, year, edition, pages
2013. Vol. 4, no 4, 1-19 p.
Keyword [en]
Cloud computing, IT security risk management, incident escalation, maturity models, IT security risk monitoring, IT security risk communication.
National Category
Information Systems
Research subject
Computer and Systems Sciences
Identifiers
URN: urn:nbn:se:su:diva-114704DOI: 10.4018/ijeei.2013100101OAI: oai:DiVA.org:su-114704DiVA: diva2:793810
Available from: 2015-03-09 Created: 2015-03-09 Last updated: 2016-12-05Bibliographically approved

Open Access in DiVA

No full text

Other links

Publisher's full text

Search in DiVA

By author/editor
Wahlgren, GunnarKowalski, Stewart
By organisation
Department of Computer and Systems Sciences
Information Systems

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 21 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf