Organisations Capability and Aptitude towards IT Security Governance

Research output: Book chapter/Published conference paperConference paper

Abstract

Abstract:In today's more digitized world, the notion of Information Technology's (IT) delivery of value to businesses has been stretched to mitigation of broader organisations' risk. This has triggered the higher management levels to provide IT security in all levels of organisations' governance and decision making processes. With such stringent governance, IT security is considered as one of the core business processes with up-to-date policies and procedures to be in placed at all levels of governance. This paper provides IT security practitioners' view on how IT security is managed in their organisations. A close look at some of the IT security governance standards and how these standards are applied in the organisations gives us astonishing results about organisations' capability levels with most practitioners thinking IT security processes are either not fully implemented or fail to achieve its purpose.
Original languageEnglish
Title of host publicationproceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015)
Place of PublicationUS
PublisherIEEE, Institute of Electrical and Electronics Engineers
Pages1-4
Number of pages4
Publication statusPublished - 2015
EventThe 5th International Conference on IT Convergence and Security 2015 - Kuala Lumpur, Malaysia, Kuala Lumpur, Malaysia
Duration: 24 Aug 201527 Aug 2015
http://icatse.org/icitcs/icitcs2015/

Conference

ConferenceThe 5th International Conference on IT Convergence and Security 2015
CountryMalaysia
CityKuala Lumpur
Period24/08/1527/08/15
Internet address

Fingerprint

Governance
Business process
Decision-making process
Mitigation

Cite this

Zia, T. (2015). Organisations Capability and Aptitude towards IT Security Governance. In proceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015) (pp. 1-4). US: IEEE, Institute of Electrical and Electronics Engineers.
Zia, Tanveer. / Organisations Capability and Aptitude towards IT Security Governance. proceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015). US : IEEE, Institute of Electrical and Electronics Engineers, 2015. pp. 1-4
@inproceedings{78251b68f6e048c984816e0ced146123,
title = "Organisations Capability and Aptitude towards IT Security Governance",
abstract = "Abstract:In today's more digitized world, the notion of Information Technology's (IT) delivery of value to businesses has been stretched to mitigation of broader organisations' risk. This has triggered the higher management levels to provide IT security in all levels of organisations' governance and decision making processes. With such stringent governance, IT security is considered as one of the core business processes with up-to-date policies and procedures to be in placed at all levels of governance. This paper provides IT security practitioners' view on how IT security is managed in their organisations. A close look at some of the IT security governance standards and how these standards are applied in the organisations gives us astonishing results about organisations' capability levels with most practitioners thinking IT security processes are either not fully implemented or fail to achieve its purpose.",
keywords = "Corporate governance, IT governance, IT security governance, Standards",
author = "Tanveer Zia",
note = "Imported on 03 May 2017 - DigiTool details were: publisher = US: IEEE Digital Library, 2015. Event dates (773o) = 24-27 August 2015; Parent title (773t) = IEEE International Conference on IT Convergence and Security.",
year = "2015",
language = "English",
pages = "1--4",
booktitle = "proceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015)",
publisher = "IEEE, Institute of Electrical and Electronics Engineers",
address = "United States",

}

Zia, T 2015, Organisations Capability and Aptitude towards IT Security Governance. in proceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015). IEEE, Institute of Electrical and Electronics Engineers, US, pp. 1-4, The 5th International Conference on IT Convergence and Security 2015, Kuala Lumpur, Malaysia, 24/08/15.

Organisations Capability and Aptitude towards IT Security Governance. / Zia, Tanveer.

proceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015). US : IEEE, Institute of Electrical and Electronics Engineers, 2015. p. 1-4.

Research output: Book chapter/Published conference paperConference paper

TY - GEN

T1 - Organisations Capability and Aptitude towards IT Security Governance

AU - Zia, Tanveer

N1 - Imported on 03 May 2017 - DigiTool details were: publisher = US: IEEE Digital Library, 2015. Event dates (773o) = 24-27 August 2015; Parent title (773t) = IEEE International Conference on IT Convergence and Security.

PY - 2015

Y1 - 2015

N2 - Abstract:In today's more digitized world, the notion of Information Technology's (IT) delivery of value to businesses has been stretched to mitigation of broader organisations' risk. This has triggered the higher management levels to provide IT security in all levels of organisations' governance and decision making processes. With such stringent governance, IT security is considered as one of the core business processes with up-to-date policies and procedures to be in placed at all levels of governance. This paper provides IT security practitioners' view on how IT security is managed in their organisations. A close look at some of the IT security governance standards and how these standards are applied in the organisations gives us astonishing results about organisations' capability levels with most practitioners thinking IT security processes are either not fully implemented or fail to achieve its purpose.

AB - Abstract:In today's more digitized world, the notion of Information Technology's (IT) delivery of value to businesses has been stretched to mitigation of broader organisations' risk. This has triggered the higher management levels to provide IT security in all levels of organisations' governance and decision making processes. With such stringent governance, IT security is considered as one of the core business processes with up-to-date policies and procedures to be in placed at all levels of governance. This paper provides IT security practitioners' view on how IT security is managed in their organisations. A close look at some of the IT security governance standards and how these standards are applied in the organisations gives us astonishing results about organisations' capability levels with most practitioners thinking IT security processes are either not fully implemented or fail to achieve its purpose.

KW - Corporate governance

KW - IT governance

KW - IT security governance

KW - Standards

M3 - Conference paper

SP - 1

EP - 4

BT - proceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015)

PB - IEEE, Institute of Electrical and Electronics Engineers

CY - US

ER -

Zia T. Organisations Capability and Aptitude towards IT Security Governance. In proceedings of the 2015 5th International Conference on IT Convergence and Security (ICITCS 2015). US: IEEE, Institute of Electrical and Electronics Engineers. 2015. p. 1-4