IT Governance, Risk, and Compliance

Jan 5 2013   4:52PM GMT

eBook excerpt: Assuring Information Security – Part VIII

Robert Davis Robert Davis Profile: Robert Davis

1.2 IAP Management

“Applying similar management practices to [i]nformation security management is unavoidable as the security environment keeps on increasing in complexity and insecurity.” – Security

Typically, the primary purposes for information systems are reliable, effective data collection, processing, and dissemination.  Information systems should incorporate procedures specifically designed to achieve management’s objectives through adequate control measures.  An entity’s management therefore should consider IAP a required service ensuring relevant information criteria delivery and support.  As suggested by the COBIT framework, an entity’s information delivery and support should integrate effectiveness, efficiency, confidentiality, integrity, availability, compliance, and reliability criteria.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: