Ponencia
Towards Automatic Integration of Information Security Governance and Management using a BPMS approach
Autor/es | Varela Vaca, Ángel Jesús
Martínez Gasca, Rafael |
Departamento | Universidad de Sevilla. Departamento de Lenguajes y Sistemas Informáticos |
Fecha de publicación | 2015 |
Fecha de depósito | 2022-11-22 |
Publicado en |
|
ISBN/ISSN | 978-84-9773-742-5 |
Resumen | The information security management is more and
more carried out by means of business processes although
disregarding the quality of management enough. In order to
improve that quality, we propose to carry out the ... The information security management is more and more carried out by means of business processes although disregarding the quality of management enough. In order to improve that quality, we propose to carry out the automation of the information security governance. To achieve a high maturity level in the information security management, the integration of processes for good governance is needed, which enables to ensure the maturity level 4: Qualitatively Controlled, such as ISO/IEC 21827:2008 proposed. This level allows establishing measurable quality goals and objectively managing performance. This work enables to reach these levels by using business process management systems to implement a good information security governance, combined with the integration of business processes for the information security management |
Cita | Varela Vaca, Á.J. y Martínez Gasca, R. (2015). Towards Automatic Integration of Information Security Governance and Management using a BPMS approach. En JNIC 2015: Primeras Jornadas Nacionales de Investigación en Ciberseguridad (122-128), León, España: Universidad de León. |
Ficheros | Tamaño | Formato | Ver | Descripción |
---|---|---|---|---|
Towards Automatic Integration ... | 745.2Kb | [PDF] | Ver/ | |