The derivation of a conceptual model for outsourcing IT security
conference contribution
posted on 2006-01-01, 00:00authored byDavid Wilde, Matthew Warren, W Hutchinson
IT security outsourcing is the establishment of a contractual relationship with an outside vendor to assume responsibility for one or more security functions. Outsourcing in IS has had a variable history of success and the complexity of the decision making process leads to a substantial degree of uncertainty. This is especially so in the realm of IS security since the protection of both hardware and software systems in is placed in the hands of an external provider. This is the second paper discussing the improvement of the effectiveness of the decision making process by means of a conceptual model using Soft System Methodology techniques that integrates security benefits, costs and their respective performance measures. In this paper the methodology used to develop the model and its validation are discussed.
History
Event
IADIS International Conference (2006: Dublin, Ireland)