Security Choice and Corporate Governance

Critical Success Factors in implementing information security governance (Case study: Iranian Central Oil Fields Company)

The oil industry, as one of the main industries of the country, has always faced cyber attacks and security threats. Therefore, the integration of information security in corporate governance is essential and a governance challenge. The integration of information security and corporate governance is called information security governance. In this research, we identified "critical success factor...

Corporate Governance: Information security the weakest link?

Information is an important asset of any organisation and the protection of this asset, through information security is equally important. This paper examines the relationship between corporate governance and information security and the fact that top management is responsible for high-quality information security.

Corporate Governance and Information Security

Proceedings of The 6 th Australian Information Security Management Conference

This paper presents a critique of emergent views on the roles of the boards of directors in relation to information security. The analysis highlights several concerns about the separation and validation of proper theory and business assertions of information security at board level. New requirements articulated by industry bodies – represented by a selected group of experts and evident in liter...

Developing a framework for understanding Security Governance

With reported security incidents in organisations on the increase, effective Security Governance is expected to become a major issue in organisations. A research framework of Security Governance was created from a literature review into Corporate Governance, IT Governance, and Security Management. Reported in this paper is an initial case study based on this framework. The framework covers the ...