A Web-Enabled Enterprise Security Management Framework Based on a Unified Model of Enterprise Information System Security

2005 ◽  
pp. 328-331 ◽  
Author(s):  
Anirban Sengupta ◽  
Aniruddha Mukhopadhyay ◽  
Koel Ray ◽  
Aveek Guha Roy ◽  
Dipankar Aich ◽  
...  
Keyword(s):  
Information System ◽  
Security Management ◽  
System Security ◽  
Unified Model ◽  
Enterprise Information System ◽  
Enterprise Information ◽  
Management Framework ◽  
Information System Security ◽  
Enterprise Security

Enterprise Information System Security

2011 ◽  
pp. 154-168
Author(s):  
Chandan Mazumdar
Keyword(s):  
Information System ◽  
Life Cycle ◽  
Security Policy ◽  
System Security ◽  
Policy Formulation ◽  
Life Cycle Approach ◽  
Security Testing ◽  
Enterprise Information System ◽  
Enterprise Information ◽  
Information System Security

There has been an unprecedented thrust in employing Computers and Communication technologies in all walks of life. The systems enabled by Information Technology are becoming more and more complex resulting in various threats and vulnerabilities. The security properties, like confidentiality, integrity, and availability, are becoming more and more difficult to protect. In this chapter, a life-cycle approach to achieve and maintain security of enterprises has been proposed. First, enterprise information systems are looked at in detail. Then, the need for enterprise information system security and problems associated with security implementation are discussed. The authors consider enterprise information system security as a management issue and detail the information security parameters. Finally, the proposed security engineering life-cycle is described in detail, which includes, Security Requirement Analysis, Security Policy Formulation, Security Infrastructure Advisory Generation, Security Testing and Validation, and Review and Monitoring phases.

Enterprise Information System Security

2009 ◽  
pp. 118-132
Author(s):  
Chandan Mazumdar
Keyword(s):  
Information System ◽  
Life Cycle ◽  
Security Policy ◽  
System Security ◽  
Policy Formulation ◽  
Life Cycle Approach ◽  
Security Testing ◽  
Enterprise Information System ◽  
Enterprise Information ◽  
Information System Security

There has been an unprecedented thrust in employing Computers and Communication technologies in all walks of life. The systems enabled by Information Technology are becoming more and more complex resulting in various threats and vulnerabilities. The security properties, like confidentiality, integrity, and availability, are becoming more and more difficult to protect. In this chapter, a life-cycle approach to achieve and maintain security of enterprises has been proposed. First, enterprise information systems are looked at in detail. Then, the need for enterprise information system security and problems associated with security implementation are discussed. The authors consider enterprise information system security as a management issue and detail the information security parameters. Finally, the proposed security engineering life-cycle is described in detail, which includes, Security Requirement Analysis, Security Policy Formulation, Security Infrastructure Advisory Generation, Security Testing and Validation, and Review and Monitoring phases.

scholarly journals Challenges Facing Information Systems Security Management in Higher Learning Institutions: A Case Study of the Catholic University of Eastern Africa - Kenya

2014 ◽  
Vol 3 (1) ◽  
pp. 336-349
Author(s):  
Bichanga Walter Okibo ◽  
Obara Brigit Ochiche
Keyword(s):  
Information System ◽  
Information Systems ◽  
Security Management ◽  
System Security ◽  
Higher Learning ◽  
Eastern Africa ◽  
Information Systems Security ◽  
Information System Security ◽  
Systems Security ◽  
Learning Institutions

With the popularity of internet applications, many organizations are facing unprecedented security challenges. Security techniques and management tools have caught a lot of attention from both academia and practitioners. However, there is lacking a theoretical framework for the challenges facing information security management in higher learning institutions. Thus this research looked into the challenges facing information systems security management in higher learning institutions. The study was guided by understanding the major challenges facing Information Systems Security Management and establishing the extent of the use of Information Systems Security Management in higher learning institutions. The study used descriptive survey design. It targeted information systems projects managers, administrators or top management and other users (staff) of the systems in key departments. Systematic sampling strategy was used. Descriptive statistics of SPSS were used to analyze the data. Factor analysis technique was used to identify the major challenges that affect management of an institution’s information system security. Pearson’s Chi-Square was used to test the relationships that exist between the categorical variables. The study found out that system vulnerability, computer crime and abuse, environmental security and financial backing/security are key challenges institutions of higher learning are experiencing in the management of their information systems. The study recommends the implementation of new policies and procedures to guide information system security. Programs for monitoring and evaluating information systems security in relation to performance indicators should be put in place. Institutions should invest heavily in developing their staff through training programmes such as seminars, workshops and conferences to further develop staff skills and abilities on information systems security issues.

Sign in / Sign up

Export Citation Format

Share Document