Abstract
Contemporary organisations are at infancy stages of adopting IT governance processes in Australia. Organisations who have adopted these processes underestimate the security processes within the governance framework. If the security processes are designed, they are often flawed with operational level implementation. This study investigates IT security governance broadly and in Australian organisations specifically. The objective of this study is to bring the local organisations in alignment with international standards and frameworks in terms of integration of information security, IT audits, risks and control measures. A survey of selected organisations is completed and results are presented in this paper identifying the maturity level of IT security governance in Australian organisations against the well known Capability Maturity Model® (CMM.)
| Original language | English |
|---|---|
| Title of host publication | SecAU 2010 |
| Subtitle of host publication | 8th Australian Digital Forensics (ADF) Conference |
| Editors | Christopher Bolan |
| Place of Publication | Perth, WA |
| Publisher | secau - Security Research Centre, ECU |
| Pages | 182-194 |
| Number of pages | 13 |
| ISBN (Electronic) | 9780729806886 |
| Publication status | Published - 2010 |
| Event | Security Research Centre (SECAU) Conference - Perth, WA, Australia Duration: 29 Nov 2010 → 02 Dec 2010 |
Conference
| Conference | Security Research Centre (SECAU) Conference |
|---|---|
| Country/Territory | Australia |
| Period | 29/11/10 → 02/12/10 |