Special Offers
- Acquire a Source of Open Access (OA) APC Funding for Your Institution Through
  IGI Global's OA Fee Waiver (Offset Model) Initiative
  For any library that invests in IGI Global's InfoSci-Books and/or InfoSci-Journals databases, IGI Global will match the library’s investment with a fund of equal value to go toward subsidizing the OA APCs for their faculty patrons when their work is submitted/accepted under OA into an IGI Global journal.
  Learn More
- Subscribe to the Latest Research Through IGI Global's InfoSci-OnDemand Plus
  InfoSci®-OnDemand Plus, a subscription-based service, provides researchers the ability to access full-text content from over 100,000+ peer-reviewed book chapters and 25,000+ scholarly journal articles that spans across 350+ topics in 11 core subjects. Users can select articles or chapters that meet their interests and gain access to the full content permanently in their personal online InfoSci-OnDemand Plus library.
  Subscribe
- Purchase the Encyclopedia of Information Science and Technology, Fourth Edition
  and Receive Complimentary E-Books of Previous Editions
  When ordering directly through IGI Global's Online Bookstore, receive the complimentary e-books for the first, second, and third editions with the purchase of the Encyclopedia of Information Science and Technology, Fourth Edition e-book.
  Purchase
- Create a Free IGI Global Library Account to Receive an Additional 5% Discount on All Purchases
  Exclusive benefits include one-click shopping, flexible payment options, free COUNTER 5 reports and MARC records, and a 5% discount on single all titles, as well as the award-winning InfoSci^®-Databases.
  Sign Up Now!
- Receive a 20% Discount on All Publications Purchased Through
  IGI Global’s Online Bookstore
  This discount cannot be combined with any other offer and is only valid when purchasing directly through IGI Global. (Exclusion of select titles and products may apply).
  Browse Publications
Books
Journals
InfoSci^®-Databases
Articles/Chapters
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - Fair Use Policy
  - Open Access Publishing
  - Editorial Services
  - FAQ
Catalogs
About Us
Newsroom

Knowledge for Managing Information Systems Security: Review and Future Research Directions

Ken H. Guo (McMaster University, Canada)

Source Title: E-Strategies for Resource Management Systems: Planning and Implementation

DOI: 10.4018/978-1-61692-016-6.ch016

OnDemand PDF Download:

$37.50

Abstract

Knowledge is one of the critical factors that organizations need to consider when managing the security of resource management systems or information systems in general. This is because knowledge is not only the subject but also a tool of IS security management. On the one hand, IS security is about the security of knowledge (including data and information). On the other hand, IS security management is a knowledge-intensive activity that depends heavily on IS professionals’ expertise and skills and end user awareness. Given the important role of knowledge, this chapter aims to review current security research by applying knowledge management concepts and frameworks as a tool and lens. Based on the systemic review, this chapter identifies gaps in the current information systems security literature and provides some guidelines for future research and security practices.

Chapter Preview

Top

A Brief Background Of Information Systems Security

In the IS literature, there are many seemingly similar terms used for the concept of security, e.g. computer security, information security, and information systems security, to name a few. The term of computer security is often technical-oriented and encompasses technologies such as encryption algorithm. It may also refer to the security of a single computer. Information security, according to International Standards Organization, is “the protection of information from a wide range of threats”(ISO/IEC, 2005). Information systems security differs from information security in that the former concept encompass not only data or information itself but also those systems that process and store such data and information (Theoharidou, Kokolakis, Karyda, & Kiountouzis, 2005). Despite the subtle differences, researchers and practitioners by and large use these terms interchangeably (this approach is adopted in this chapter). For example, the term of information security is also defined as the protection of both information and the systems and hardware that use, store, and transmit that information (Whitman & Mattord, 2003, p. 9).

Complete Chapter List

Search this Book:

Reset

MLA

APA

Chicago

Export Reference

Knowledge for Managing Information Systems Security: Review and Future Research Directions

Abstract

A Brief Background Of Information Systems Security

Complete Chapter List