Deakin University
Browse

A model and framework for online security benchmarking

Download (97.81 kB)
journal contribution
posted on 2007-06-01, 00:00 authored by Graeme PyeGraeme Pye, Matthew Warren
The variety of threats and vulnerabilities within the online business environment are dynamic and thus constantly changing in how they impinge upon online functionality, compromise organizational or customer information, contravene security implementations and thereby undermine online customer confidence. To nullify such threats, online security management must become proactive, by reviewing and continuously improving online security to strengthen the enterpriseis online security measures and policies, as modelled. The benchmarking process utilises a proposed benchmarking framework to guide both the development and application of security benchmarks created in the first instance, from recognized information technology (IT) and information security standards (ISS) and then their application to the online security measures and policies utilized within online business. Furthermore, the benchmarking framework incorporates a continuous improvement review process to address the relevance of benchmark development over time and the changes in threat focus.

History

Journal

Informatica : journal of computing and informatics

Volume

31

Pagination

209 - 215

Location

Ljubljana, Jugoslavija

Open access

  • Yes

ISSN

0350-5596

Language

eng

Publication classification

C1 Refereed article in a scholarly journal

Copyright notice

2007, Slovensko Drustvo Informatika