A paradigmatic analysis of conventional approaches for developing and managing secure IS
Sec '01 Proceedings of the 16th international conference on Information security: Trusted information: the new decade challenge
A review of information security issues and respective research contributions
ACM SIGMIS Database
Integrating security and usability into the requirements and design process
International Journal of Electronic Security and Digital Forensics
Knowledge management within information security: the case of Barings Bank
International Journal of Business Information Systems
Goal Setting and Trust in a Security Management Context
Information Security Journal: A Global Perspective
International Journal of Human-Computer Studies
Proceedings of the 2010 workshop on New security paradigms
| Hi-index | 0.00 |
The increasing rate of reported computer security problems suggests that the highly structured and technical traditional approaches to the management of IS security do not appear to be successful. This paper presents the Orion Strategy, a participative approach to the planning and management of information security in organisations. The details of this approach are discussed along with an overview of its pilot implementation within an Australian organisation. The findings from the study indicate that a high level of user participation in the planning and management of security results in raised awareness of security issues and an ownership of responsibility for the successful operations of chosen security measures.