定义首席信息安全官的战略角色

IF 2.4 Q2 INFORMATION SCIENCE & LIBRARY SCIENCE

Pacific Asia Journal of the Association for Information Systems Pub Date : 2018-09-25 DOI:10.17705/1PAIS.10303

S. Maynard, Mazino Onibere, Atif Ahmad

{"title":"定义首席信息安全官的战略角色","authors":"S. Maynard, Mazino Onibere, Atif Ahmad","doi":"10.17705/1PAIS.10303","DOIUrl":null,"url":null,"abstract":"The level of sophistication and dynamism of the security threat environment requires modern organizations to develop novel security strategies. The responsibility to strategize falls to the Chief Information Security Officer (CISO). A review of the security literature shows there has been little emphasis on understanding the role of the CISO as a strategist. In this research, we conduct a systematic literature review from the disciplines of information security and strategic management to identify specific attributes required by CISOs to become effective strategists. We discuss these attributes in the context of Information Security Management and argue that CISOs with these attributes or capabilities are better positioned to overcome the existing strategic security challenges facing organizations.","PeriodicalId":43480,"journal":{"name":"Pacific Asia Journal of the Association for Information Systems","volume":null,"pages":null},"PeriodicalIF":2.4000,"publicationDate":"2018-09-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"13","resultStr":"{\"title\":\"Defining the Strategic Role of the Chief Information Security Officer\",\"authors\":\"S. Maynard, Mazino Onibere, Atif Ahmad\",\"doi\":\"10.17705/1PAIS.10303\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The level of sophistication and dynamism of the security threat environment requires modern organizations to develop novel security strategies. The responsibility to strategize falls to the Chief Information Security Officer (CISO). A review of the security literature shows there has been little emphasis on understanding the role of the CISO as a strategist. In this research, we conduct a systematic literature review from the disciplines of information security and strategic management to identify specific attributes required by CISOs to become effective strategists. We discuss these attributes in the context of Information Security Management and argue that CISOs with these attributes or capabilities are better positioned to overcome the existing strategic security challenges facing organizations.\",\"PeriodicalId\":43480,\"journal\":{\"name\":\"Pacific Asia Journal of the Association for Information Systems\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":2.4000,\"publicationDate\":\"2018-09-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"13\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Pacific Asia Journal of the Association for Information Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.17705/1PAIS.10303\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"INFORMATION SCIENCE & LIBRARY SCIENCE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Pacific Asia Journal of the Association for Information Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.17705/1PAIS.10303","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"INFORMATION SCIENCE & LIBRARY SCIENCE","Score":null,"Total":0}

引用次数: 13

摘要

安全威胁环境的复杂性和动态性要求现代组织开发新的安全策略。制定战略的责任落在首席信息安全官(CISO)身上。对安全文献的回顾表明，很少强调理解首席信息安全官作为战略家的作用。在本研究中，我们从信息安全和战略管理学科进行了系统的文献综述，以确定ciso成为有效战略家所需的具体属性。我们将在信息安全管理的上下文中讨论这些属性，并认为具有这些属性或能力的ciso能够更好地克服组织面临的现有战略安全挑战。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Defining the Strategic Role of the Chief Information Security Officer

The level of sophistication and dynamism of the security threat environment requires modern organizations to develop novel security strategies. The responsibility to strategize falls to the Chief Information Security Officer (CISO). A review of the security literature shows there has been little emphasis on understanding the role of the CISO as a strategist. In this research, we conduct a systematic literature review from the disciplines of information security and strategic management to identify specific attributes required by CISOs to become effective strategists. We discuss these attributes in the context of Information Security Management and argue that CISOs with these attributes or capabilities are better positioned to overcome the existing strategic security challenges facing organizations.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Pacific Asia Journal of the Association for Information Systems INFORMATION SCIENCE & LIBRARY SCIENCE-

CiteScore

4.10

自引率

33.30%

发文量