Toward an Improved Business Information Security Posture
Information security, Risk management, Business effectiveness, Technological Frames of Reference
Information-age businesses continue to experience data loss. While technical controls provide some security against the illicit activity, a more robust organizationally focused information security method should be understood and applied to losses from computer security incidents. This paper focuses on how information is defined organizationally to understand the information security gaps created by incongruent member perceptions related to information risk among different stakeholder communities. It is argued that member perception incongruity reduction will improve organizational information security effectiveness.
Derek J. Sedlack, Ph.D.
Americas Institute for Cybersecurity Leadership
October 28, 2019
Creative Commons Attribution-NoDerivatives 4.0 International License
Digital document (pdf format)