A Model of Information Security Governance for E-Business

2009 ◽  
pp. 2143-2154
Author(s):  
Dieter Fink ◽  
Tobias Huegle ◽  
Martin Dortschy
Keyword(s):  
Information Security ◽  
Cyber Security ◽  
New Technologies ◽  
It Governance ◽  
Security Management ◽  
Business Environment ◽  
Proposed Model ◽  
Information Security Governance ◽  
Business Security

This chapter identifies various levels of governance followed by a focus on the role of information technology (IT) governance with reference to information security for today’s electronic business (e-business) environment. It outlines levels of enterprise, corporate, and business governance in relation to IT governance before integrating the latter with e-business security management. E-business has made organisations even more reliant on the application of IT while exploiting its capabilities for generating business advantages. The emergence of and dependence on new technologies, like the Internet, have increased exposure of businesses to technology-originated threats and have created new requirements for security management and governance. Previous IT governance frameworks, such as those provided by the IT Governance Institute, Standards Australia, and The National Cyber Security Partnership, have not given the connection between IT governance and e-business security sufficient attention. The proposed model achieves the necessary integration through risk management in which the tensions between threat reduction and value generation activities have to be balanced.

A Model of Information Security Governance for E-Business

2008 ◽  
pp. 2958-2969
Author(s):  
Dieter Fink ◽  
Tobias Huegle ◽  
Martin Dortschy
Keyword(s):  
Information Security ◽  
Cyber Security ◽  
New Technologies ◽  
It Governance ◽  
Security Management ◽  
Business Environment ◽  
Proposed Model ◽  
Information Security Governance ◽  
Business Security

This chapter identifies various levels of governance followed by a focus on the role of information technology (IT) governance with reference to information security for today’s electronic business (e-business) environment. It outlines levels of enterprise, corporate, and business governance in relation to IT governance before integrating the latter with e-business security management. E-business has made organisations even more reliant on the application of IT while exploiting its capabilities for generating business advantages. The emergence of and dependence on new technologies, like the Internet, have increased exposure of businesses to technology-originated threats and have created new requirements for security management and governance. Previous IT governance frameworks, such as those provided by the IT Governance Institute, Standards Australia, and The National Cyber Security Partnership, have not given the connection between IT governance and e-business security sufficient attention. The proposed model achieves the necessary integration through risk management in which the tensions between threat reduction and value generation activities have to be balanced.

A Model of Information Security Governance for E-Business

2011 ◽  
pp. 404-415
Author(s):  
Dieter Fink ◽  
Tobias Huegle
Keyword(s):  
Information Security ◽  
Cyber Security ◽  
New Technologies ◽  
It Governance ◽  
Security Management ◽  
Business Environment ◽  
Proposed Model ◽  
Information Security Governance ◽  
Business Security

This chapter identifies various levels of governance followed by a focus on the role of information technology (IT) governance with reference to information security for today’s electronic business (e-business) environment. It outlines levels of enterprise, corporate, and business governance in relation to IT governance before integrating the latter with e-business security management. E-business has made organisations even more reliant on the application of IT while exploiting its capabilities for generating business advantages. The emergence of and dependence on new technologies, like the Internet, have increased exposure of businesses to technology-originated threats and have created new requirements for security management and governance. Previous IT governance frameworks, such as those provided by the IT Governance Institute, Standards Australia, and The National Cyber Security Partnership, have not given the connection between IT governance and e-business security sufficient attention. The proposed model achieves the necessary integration through risk management in which the tensions between threat reduction and value generation activities have to be balanced.

A Model of Information Security Governance for E-Business

2011 ◽  
pp. 1-15
Author(s):  
Dieter Fink ◽  
Tobias Huegle ◽  
Martin Dortschy
Keyword(s):  
Information Security ◽  
Cyber Security ◽  
New Technologies ◽  
It Governance ◽  
Security Management ◽  
Business Environment ◽  
Proposed Model ◽  
Information Security Governance ◽  
Business Security

This chapter identifies various levels of governance followed by a focus on the role of information technology (IT) governance with reference to information security for today’s electronic business (e-business) environment. It outlines levels of enterprise, corporate, and business governance in relation to IT governance before integrating the latter with e-business security management. E-business has made organisations even more reliant on the application of IT while exploiting its capabilities for generating business advantages. The emergence of and dependence on new technologies, like the Internet, have increased exposure of businesses to technology-originated threats and have created new requirements for security management and governance. Previous IT governance frameworks, such as those provided by the IT Governance Institute, Standards Australia, and The National Cyber Security Partnership, have not given the connection between IT governance and e-business security sufficient attention. The proposed model achieves the necessary integration through risk management in which the tensions between threat reduction and value generation activities have to be balanced.

scholarly journals Securing Cloud Computing Through IT Governance

2021 ◽  
Vol 7 (1) ◽  
Author(s):  
Salman M. Faizi, Shawon Rahman
Keyword(s):  
Information Technology ◽  
Cloud Computing ◽  
Information Security ◽  
It Governance ◽  
Security Governance ◽  
Business Alignment ◽  
Information Security Governance ◽  
Business Needs ◽  
Market Needs

Lack of alignment between information technology (IT) and the business is a problem facing many organizations. Most organizations, today, fundamentally depend on IT. When IT and the business are aligned in an organization, IT delivers what the business needs and the business is able to deliver what the market needs. IT has become a strategic function for most organizations, and it is imperative that IT and business are aligned. IT governance is one of the most powerful ways to achieve IT to business alignment. Furthermore, as the use of cloud computing for delivering IT functions becomes pervasive, organizations using cloud computing must effectively apply IT governance to it. While cloud computing presents tremendous opportunities, it comes with risks as well. Information security is one of the top risks in cloud computing. Thus, IT governance must be applied to cloud computing information security to help manage the risks associated with cloud computing information security. This study advances knowledge by extending IT governance to cloud computing and information security governance.

E-Business and Security

2011 ◽  
pp. 262-277
Author(s):  
Sharon Nachtigal
Keyword(s):  
Information Security ◽  
Business Environment ◽  
Future Research ◽  
Security Issues ◽  
Business Executives ◽  
Security Challenges ◽  
Modern Business ◽  
Alternative Approaches ◽  
Structured Approach ◽  
Business Security

This chapter is concerned with a major problem for any e-business organization, the security of its Information Systems. A review of information security characteristics and components is presented, followed by a detailed discussion of e-business security issues. Based on a structured approach for describing e-business functionality, e-business characteristics relevant to information security are identified. The major e-business security challenges are considered and e-business security issues are discussed and requirements are identified in different aspects of the realm. The current perimeter security approach appears to be inadequate to the modern business environment. Hence, a different approach is needed. A few alternative approaches are discussed and a review of previous and future research on e-business security is presented. Hence, the chapter aims to contribute both to academics and to e-business executives by providing the information security insight and awareness to the e-business unique security issues and challenges.

scholarly journals Research on the Application of E-commerce to Small and Medium Enterprises (SMEs): the Case of India

2019 ◽  
Vol 9 (3) ◽  
pp. 102
Author(s):  
Nguyen Xuan Trung ◽  
Dang Thai Binh ◽  
Dang Thi Thuy ◽  
Dong Thi Thuy Linh
Keyword(s):  
New Technologies ◽  
Small And Medium Enterprises ◽  
Digital Technologies ◽  
Business Environment ◽  
Indian Government ◽  
Role Of Government ◽  
The World ◽  
Fierce Competition ◽  
Medium Enterprises

SMEs account for a large propotion and play an important role in the development of each country in the world, including India. The globalization will bring many advantages for enterprises however SMEs will face fierce competition at the local, national and international level. In order to maintain and promote the important role of SMEs in the context of increased competition, SMEs have to change and adopt new technologies. E-commerce and digital technologies are bringing opportunities to help SMEs improve their competitiveness, narrow the gap with big enterprises thanks to their fairness and flexibility of the digital business environment. According to UNIDO (2017), India is one of the countries successfully applying e-commerce to SMEs. Contributing to this success is the important role of the Indian government. Therefore, this paper focuses on researching the application of e-commerce to SMEs in terms of the role of government in promoting and creating ecosystem for SMEs and e-commerce development.

scholarly journals ANALYSIS OF TYPES OF USER’S IDENTIFICATION AND ADVANTAGES OF USER’S ATRIBUTE IDENTIFICATION BY QR-CODE

2020 ◽  
pp. 111-120
Author(s):  
O. V. Samchyshyn ◽  
D. V. Perevizna
Keyword(s):  
Information System ◽  
Information Security ◽  
Access Control ◽  
Data Storage ◽  
Cyber Security ◽  
Information Technologies ◽  
New Technologies ◽  
Cyber Attacks ◽  
Qr Code ◽  
Telecommunication Systems

Emergence of new technologies and modernization of existing information technologies, development of information and telecommunication processing and storage systems have increase the level of information security, necessitating an increase of information security’s effectiveness with the complexity of data storage architecture. Security of information from unauthorized access is an essential measure to prevent material and non-material damage to its owner. So it is very important to take into account the efficiency of the subsystem of access control and data security in order to ensure security of some information system. Accordingly the threat of information leakage has made the means of information security and cyber security one of the mandatory characteristics of information and telecommunication systems and information security has become an integral part of professional function. Under conditions of the hybrid war of the Russian Federation against Ukraine? the number of cyber attacks on military information and telecommunication systems has increased. At the same time their technological complexity has increased too. This process necessitates the improvement of information security systems and the process of providing access to them by using modern types of users identification. Access control is an effective method of information security. It regulates the use of information system resources. User’s identification is an important and integral element of access control system. An analysis of modern types of users identification is presented in the paper. The technology of QR-code is considered: the principle of formation, the types of coding, the structure of elements, the advantages of its usage. The interconnection between its components was established. Prospects for further research are the development of an algorithm and software application for user identification to provide access by QR-code to information and telecommunication systems for military purposes.

scholarly journals Tasks and powers of the National police of Ukraine in ensuring information security of the state

2021 ◽  
Vol 10 (37) ◽  
pp. 86-92
Author(s):  
Vitalii Makarchuk
Keyword(s):  
Information Security ◽  
Cyber Security ◽  
The State ◽  
Legal Method ◽  
Modeling And Forecasting ◽  
The Subject ◽  
Definition Of ◽  
Definition Of Information ◽  
National Police

The purpose of the article is to examine the role of the National Police of Ukraine in ensuring the information security of Ukraine. The subject of the study: The subject of the study is the competence of the National Police of Ukraine in ensuring the information security of Ukraine. Methodology: Dialectical method, epistemological method, analytical method, formal and legal method, normative and dogmatic method, the methods of legal modeling and forecasting were used in the research. The results of the study: The definition of “information security” and “cyber security” is provided. The main factors that negatively affect the information space in Ukraine, as well as current threats to Ukraine’s national security in the information sphere are identified. Practical implications: It is established that the number of crimes in the information sphere is growing every year. In this regard, the task of the National Police is to combat crimes and other offenses in this area, as well as to protect relevant rights and freedoms of citizens, society and the State. Value/originality: The tasks and powers in the area of information security protection of the National Police in general and the Department of Cyber Security, in particular, are defined.

scholarly journals Modelling consumer’s intention to use iot devices: role of technophilia

2021 ◽  
Vol 23 (1) ◽  
pp. 612
Author(s):  
Nusrat Jahan ◽  
Md. Abu Hosen Shawon ◽  
Farzana Sadia ◽  
Dilara Khanom Nitu ◽  
Md. Enam Kobir Ribon ◽  
...  
Keyword(s):  
Structural Equation ◽  
New Technologies ◽  
Age Groups ◽  
Equation Model ◽  
Partial Least Square ◽  
Least Square ◽  
Sample Survey ◽  
Proposed Model ◽  
Iot Devices

<p><span>The present study has been conducted to examine whether skills and general technology-related value (GTV) required to operate the internet of things (IoT). This study also investigates is there any effect of technophilia to adopt IoT. The research method we use in this quantitative study was the sample survey. For investigating results, 352 surveys were conducted where 26 surveys were led through online and 292 surveys were distributed to different age groups. The proposed model was examined using partial least square structural equation model where the results revealed that IoT skills and General knowledge on technology directly contribute to technophilia which covers behavioural, emotional, and cognitive aspects. That is if people have a fascination for new technologies then they are willing to use IoT.</span></p>

Sign in / Sign up

Export Citation Format

Share Document