Scenario-based IT risk assessment in local government

作者: Unathi Mcube , Mariana Gerber , Rossouw Von Solms

DOI: 10.1109/ISTAFRICA.2016.7530587

关键词:

摘要: Information Technology (IT) has become an integral part of conducting business within organizations including local government. Local government depends heavily on the use IT to achieve its goals and objectives. The poses a number risks Thus it is important for be governed adequately. Core governance process risk management. To conduct effective management, adequate assessment must conducted given context. Auditor General identified lack assessments in South Africa. objective this paper propose automated scenario-based model improve assessment. research study followed design-oriented IS approach devise revise model.

参考文章(9)
Jacques Coertze, Rossouw von Solms, A Model for Information Security Governance in Developing Countries international conference on e-infrastructure and e-services for developing countries. pp. 279- 288 ,(2012) , 10.1007/978-3-642-41178-6_29
Thomas R. Peltier, Information Security Risk Analysis ,(2001)
Herbert J. Mattord, Michael E. Whitman, Management Of Information Security ,(2004)
Mohamed S. Saleh, Abdulkader Alfantookh, A new comprehensive framework for enterprise information security risk management Applied Computing and Informatics. ,vol. 9, pp. 107- 118 ,(2011) , 10.1016/J.ACI.2011.05.002
Jeb Webb, Atif Ahmad, Sean B. Maynard, Graeme Shanks, A situation awareness model for information security risk management Computers & Security. ,vol. 44, pp. 1- 15 ,(2014) , 10.1016/J.COSE.2014.04.005
Hubert Österle, Jörg Becker, Ulrich Frank, Thomas Hess, Dimitris Karagiannis, Helmut Krcmar, Peter Loos, Peter Mertens, Andreas Oberweis, Elmar J Sinz, None, Memorandum on design-oriented information systems research European Journal of Information Systems. ,vol. 20, pp. 7- 10 ,(2011) , 10.1057/EJIS.2010.55
Isaca, The Risk IT Framework ISA. ,(2009)
Gary Stoneburner, Alice Goguen, Alexis Feringa, Risk Management Guide for Information Technology Systems: Recommendations of the National Institute of Standards and Technology Risk Management Guide for Information Technology Systems: Recommendations of the National Institute of Standards and Technology / AHIMA, American Health Information Management Association. ,(2002) , 10.6028/NIST.SP.800-30
Thomas R. Peltier, Thomas R. Peltier, Information Security Risk Analysis, Second Edition Auerbach Publications. ,(2005) , 10.1201/9781420031195