Information Security in Value Chains: A Governance Perspective
نویسندگان
چکیده
As supply chains become more complex and global, organizations increasingly rely on advanced information technology systems to coordinate and support value chain activities. These interorganizational systems while integral to supply chain management also introduce an additional point of vulnerability. Although a matter of increasing concern, who and how the responsibility for securing these systems is governed is not well understood. We propose a conceptual framework for how these security decisions can be made in different types of value chains by combining value chain governance archetypes with the information security governance decisions that need to be made for different contexts.
منابع مشابه
Critical Success Factors in implementing information security governance (Case study: Iranian Central Oil Fields Company)
The oil industry, as one of the main industries of the country, has always faced cyber attacks and security threats. Therefore, the integration of information security in corporate governance is essential and a governance challenge. The integration of information security and corporate governance is called information security governance. In this research, we identified "critical success factor...
متن کاملInformation Systems Security Governance Research: A Behavioral Perspective
Behavioral information systems security governance entails managing the informal structures in an organization to ensure an appropriate security environment. Informal structures in an organization comprise the individual values, beliefs and behavior prevalent in an organization guiding the norms and employee perception of job responsibilities. Five consistent themes arise from a critical review...
متن کاملImproving Information Security Training: An Intercultural Perspective
To ensure successful compliance with information security (InfoSec) policy and standards, organisations must harmonise their InfoSec training programmes with the national culture of the local workforce. A successful InfoSec policy must demonstrate the value of security, not just the requirement for security. We conducted a quantitative study of 177 professionals across 35 national cultures to i...
متن کاملUnderstanding the Generation of Value along Supply Chains: Balancing Control Information and Relational Governance Mechanisms in Downstream and Upstream Relationships
Firms are involved in supply chains to achieve operative efficiency, develop strategic advantages, and generate financial profits. However, there is limited evidence regarding how governance mechanisms influence the generation of value from collaboration. Furthermore, how a particular buyer or supplier position provides benefits to partners is unclear. In this paper, we examine the roles of man...
متن کاملExploring Information Security Governance in Cloud Computing Organisation
The paper reveals factors impacting information security governance within the cloud computing technology implementation in organizations. Case study methodology was used and 15 semi-structured interviews were conducted with directors and information security professionals from 5 different types of organizations. The main component that were identified as playing a significant role in informati...
متن کامل