Paper
Information Security Management: Empirical Study and a Comprehensive Information Management Model
- Authors:
- Dien D. Phan; Kim G. Phan
- Abstract
- Information security has received great attention from the government, businesses, and the public. As information becomes more valuable, it attracts more hacker attacks, and organizations are becoming more vulnerable to losses of valuable information. Data breaches cause losses of competitive advantages, revenues, reputation, trust, and customers. In some instances, they lead to the removal of top management. Thus, protection of organizational data becomes vital to the operations and survival of businesses. This study investigates the challenges that business enterprises face in information security and proposes a total security management model. An empirical study of recent major data breaches is examined. The study finds that while technology plays the central role in information security, more attention to security management, process and policy are needed. The paper ends with lessons learned, and a comprehensive security model is proposed.
- Keywords
- Information Security; Data Breach; Information Risk; Authentication; Information Security Policy
- StartPage
- 1
- EndPage
- 9
- Doi