IT Governance, Risk, and Compliance

Jan 5 2013   4:52PM GMT

eBook excerpt: Assuring Information Security – Part VIII

Robert Davis Robert Davis Profile: Robert Davis

1.2 IAP Management

“Applying similar management practices to [i]nformation security management is unavoidable as the security environment keeps on increasing in complexity and insecurity.” – Security Governance.net

Typically, the primary purposes for information systems are reliable, effective data collection, processing, and dissemination.  Information systems should incorporate procedures specifically designed to achieve management’s objectives through adequate control measures.  An entity’s management therefore should consider IAP a required service ensuring relevant information criteria delivery and support.  As suggested by the COBIT framework, an entity’s information delivery and support should integrate effectiveness, efficiency, confidentiality, integrity, availability, compliance, and reliability criteria.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: