Emerald Login
   

Welcome guest

Article Request:
An integrated system theory of information security management

Article Information:

Title:

An integrated system theory of information security management

Author(s):

Kwo-Shing Hong, Yen-Ping Chi, Louis R. Chao, Jih-Hsing Tang

Journal:

Information Management & Computer Security

Year:

2003

Volume:

11

Issue:

5

Page:

243 - 248


ISSN:

0968-5227


DOI:

10.1108/09685220310500153

Publisher:

MCB UP Ltd

Document Access:

Existing customers:

Please login above.

Purchase this document:
Price payable: GBP £13.00
plus handling charge of GBP £1.50 and VAT where applicable.
Purchase

Request this document:
Print or e-mail a document request to your librarian.
Request

Reprints & permissions:
Image: Rightslink Request

Abstract:

With the popularity of electronic commerce, many organizations are facing unprecedented security challenges. Security techniques and management tools have caught a lot of attention from both academia and practitioners. However, there is lacking a theoretical framework for information security management. This paper attempts to integrate security policy theory, risk management theory, control and auditing theory, management system theory and contingency theory in order to build a comprehensive theory of information security management (ISM). This paper suggests that an integrated system theory is useful for understanding information security management, explaining information security management strategies, and predicting management outcomes. This theory may lay a solid theoretical foundation for further empirical research and application.

Keywords:

Contingency planning, Control systems, Information systems, Risk management, Systems theory


Article Type:

Research paper


Article URL:

http://www.emeraldinsight.com/10.1108/09685220310500153

Top