DeepAI AI Chat
Log In Sign Up

Information Security Management in High Quality IS Journals: A Review and Research Agenda

by   Sean Maynard, et al.

In the digital age, the protection of information resources is critical to the viability of organizations. Information Security Management (ISM) is a protective function that preserves the confidentiality, integrity and availability of information resources in organizations operating in a complex and evolving security threat landscape. This paper analyses ISM research themes, methods, and theories in high quality IS journals over a period of 30 years (up to the end of 2017). Although our review found that less than 1 percent of papers to be in the area of ISM, there has been a dramatic increase in the number of ISM publications as well as new emerging themes in the past decade. Further, past trends towards subjective-argumentative papers have reversed in favour of empirically validated research. Our analysis of research methods and approaches found ISM studies to be dominated by one-time surveys rather than case studies and action research. The findings suggest that although ISM research has improved its empirical backing over the years, it remains relatively disengaged from organisational practice.


page 1

page 2

page 3

page 4


Security Assurance Cases – State of the Art of an Emerging Approach

Security Assurance Cases (SAC) are a form of structured argumentation us...

Guidelines for Systematic Mapping Studies in Security Engineering

Security engineering in the software lifecycle aims at protecting inform...

10 Years of the PCG workshop: Past and Future Trends

As of 2020, the international workshop on Procedural Content Generation ...

A Bibliometrics Analysis on 28 years of Authentication and Threat Model Area

The large volume of publications in any research area can make it diffic...

Domain Name System Security and Privacy: A Contemporary Survey

The domain name system (DNS) is one of the most important components of ...

Review on Optical Image Hiding and Watermarking Techniques

Information security is a critical issue in modern society and image wat...

A Process Model to Improve Information Security Governance in Organisations

Information security governance (ISG) is a relatively new and under-rese...