Planning Security Services for IT Systems
Marie Henderson, Howard Philip Page
TL;DR
This paper proposes a framework to integrate security service planning into business processes, aiming to align security management with business objectives and facilitate risk management.
Contribution
It introduces a novel approach to make security service planning a practical business tool, improving collaboration between security teams and business stakeholders.
Findings
Enhanced understanding of security as a business enabler
Framework supports risk management and compliance integration
Improved communication between security and business units
Abstract
Often the hardest job is to get business representatives to look at security as something that makes managing their risks and achieving their objectives easier, with security compliance as just part of that journey. This paper addresses that by making planning for security services a 'business tool'.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsInformation and Cyber Security