東華大學圖書館 |

Language: English

Help

回圖書館首頁

手機版館藏查詢

Back

Switch To: Labeled | MARC Mode | ISBD

An Information Security Control Asse...

Otero, Angel R.

Linked to FindBook

Google Book

Amazon

博客來

An Information Security Control Assessment Methodology for Organizations.

Record Type:	Language materials, printed : Monograph/item
Title/Author:	An Information Security Control Assessment Methodology for Organizations./
Author:	Otero, Angel R.
Description:	175 p.
Notes:	Source: Dissertation Abstracts International, Volume: 75-07(E), Section: B.
Contained By:	Dissertation Abstracts International75-07B(E).
Subject:	Information Technology. -
Online resource:	http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3615894
ISBN:	9781303824401

An Information Security Control Assessment Methodology for Organizations.
Otero, Angel R.

An Information Security Control Assessment Methodology for Organizations. - 175 p.

Source: Dissertation Abstracts International, Volume: 75-07(E), Section: B.

Thesis (Ph.D.)--Nova Southeastern University, 2014.

In an era where use and dependence of information systems is significantly high, the threat of incidents related to information security that could jeopardize the information held by organizations is more and more serious. Alarming facts within the literature point to inadequacies in information security practices, particularly the evaluation of information security controls in organizations. Research efforts have resulted in various methodologies developed to deal with the information security controls assessment problem. A closer look at these traditional methodologies highlights various weaknesses that can prevent an effective information security controls assessment in organizations. This dissertation develops a methodology that addresses such weaknesses when evaluating information security controls in organizations. The methodology, created using the Fuzzy Logic Toolbox of MATLAB based on fuzzy theory and fuzzy logic, uses fuzzy set theory which allows for a more accurate assessment of imprecise criteria than traditional methodologies. It is argued and evidenced that evaluating information security controls using fuzzy set theory addresses existing weaknesses found in the literature for traditional evaluation methodologies and, thus, leads to a more thorough and precise assessment. This, in turn, results in a more effective selection of information security controls and enhanced information security in organizations.

ISBN: 9781303824401Subjects--Topical Terms:

1030799
Information Technology.

An Information Security Control Assessment Methodology for Organizations.
LDR:03577nam a2200301 4500 001 1967782
005 20141124124238.5
008 150210s2014 ||||||||||||||||| ||eng d
020 $a 9781303824401
035 $a (MiAaPQ)AAI3615894
035 $a AAI3615894
040 $a MiAaPQ $c MiAaPQ
100 1 $a Otero, Angel R. $3 2104857
245 1 3 $a An Information Security Control Assessment Methodology for Organizations.
300 $a 175 p.
500 $a Source: Dissertation Abstracts International, Volume: 75-07(E), Section: B.
500 $a Adviser: Gurvirender P. Tejay.
502 $a Thesis (Ph.D.)--Nova Southeastern University, 2014.
520 $a In an era where use and dependence of information systems is significantly high, the threat of incidents related to information security that could jeopardize the information held by organizations is more and more serious. Alarming facts within the literature point to inadequacies in information security practices, particularly the evaluation of information security controls in organizations. Research efforts have resulted in various methodologies developed to deal with the information security controls assessment problem. A closer look at these traditional methodologies highlights various weaknesses that can prevent an effective information security controls assessment in organizations. This dissertation develops a methodology that addresses such weaknesses when evaluating information security controls in organizations. The methodology, created using the Fuzzy Logic Toolbox of MATLAB based on fuzzy theory and fuzzy logic, uses fuzzy set theory which allows for a more accurate assessment of imprecise criteria than traditional methodologies. It is argued and evidenced that evaluating information security controls using fuzzy set theory addresses existing weaknesses found in the literature for traditional evaluation methodologies and, thus, leads to a more thorough and precise assessment. This, in turn, results in a more effective selection of information security controls and enhanced information security in organizations.
520 $a The main contribution of this research to the information security literature is the development of a fuzzy set theory-based assessment methodology that provides for a thorough evaluation of ISC in organizations. The methodology just created addresses the weaknesses or limitations identified in existing information security control assessment methodologies, resulting in an enhanced information security in organizations.
520 $a The methodology can also be implemented in a spreadsheet or software tool, and promote usage in practical scenarios where highly complex methodologies for ISC selection are impractical. Moreover, the methodology fuses multiple evaluation criteria to provide a holistic view of the overall quality of information security controls, and it is easily extended to include additional evaluation criteria factor not considered within this dissertation. This is one of the most meaningful contributions from this dissertation. Finally, the methodology provides a mechanism to evaluate the quality of information security controls in various domains. Overall, the methodology presented in this dissertation proved to be a feasible technique for evaluating information security controls in organizations.
590 $a School code: 1191.
650 4 $a Information Technology. $3 1030799
650 4 $a Business Administration, General. $3 1017457
690 $a 0489
690 $a 0310
710 2 $a Nova Southeastern University. $b Information Systems (DISS). $3 1023901
773 0 $t Dissertation Abstracts International $g 75-07B(E).
790 $a 1191
791 $a Ph.D.
792 $a 2014
793 $a English
856 4 0 $u http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3615894