• DocumentCode
    288076
  • Title

    The management of security

  • Author

    Piper, Fred

  • Author_Institution
    R. Holloway, London Univ., UK
  • fYear
    1994
  • fDate
    1994
  • Firstpage
    42552
  • Lastpage
    42554
  • Abstract
    Ensuring that proper controls are in place to protect an organisation´s information and information system is a management issue. This involves establishing a corporate infrastructure within which security of information can be managed. This can only be achieved if all roles and responsibilities are clearly defined, including those of the security manager, audit, IT and so on. It also requires careful definition of the content and role of the corporate information security manual, awareness and training programmes and risk analysis. The corporate information security manual includes the corporate policy, standards, practices, and procedures. The article discusses the issues and presents models for the organisational structure, the roles and responsibilities and the interaction of strategic tools such as the manual, awareness and risk analysis. It also addresses cost and the establishment of appropriate measures. Some discussion is focused on the management and operation of the security controls themselves
  • Keywords
    security of data; telecommunication network management; corporate infrastructure; cost; cryptography; information system; management; operation; risk analysis; security controls; training programmes;
  • fLanguage
    English
  • Publisher
    iet
  • Conference_Titel
    Security and Cryptography Applications to Radio Systems, IEE Colloquium on
  • Conference_Location
    London
  • Type

    conf

  • Filename
    369660
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=288076