Cybersecurity and information security – what goes where?
Abstract
Purpose
The purpose of this paper is to define cybersecurity and cybersecurity governance in simplified terms – to explain to the boards of directors and executive management their responsibilities and accountabilities in this regard.
Design/methodology/approach
The primary research methodology utilized in this paper is desk research. A literature study is followed by some discussion in terms of the contribution made.
Findings
Clearly define the relationship between cybersecurity and information security, especially from a governance perspective.
Research limitations/implications
The paper is based predominantly on an ISO standard.
Originality/value
The simplification of terminology to be used in the governance of cybersecurity, together with assistance to the guiding of boards of directors regarding their duties and responsibilities as far as cybersecurity is concerned.
Keywords
Citation
von Solms, B. and von Solms, R. (2018), "Cybersecurity and information security – what goes where?", Information and Computer Security, Vol. 26 No. 1, pp. 2-9. https://doi.org/10.1108/ICS-04-2017-0025
Publisher
:Emerald Publishing Limited
Copyright © 2018, Emerald Publishing Limited