A Taxonomy of Challenges in Information Security Risk Management

Wangen, Gaute; Snekkenes, Einar

Wangen, Gaute; Snekkenes, Einar

Chapter

Published version

View/Open

Wangen+1+Taxonomy.pdf (226.5Kb)

URI

http://hdl.handle.net/11250/2483955

Date

2013

Metadata

Show full item record

Collections

Institutt for informasjonssikkerhet og kommunikasjonsteknologi [2416]
Publikasjoner fra CRIStin - NTNU [34985]

Abstract

Risk Management is viewed by many as the cornerstone of information security and is used to determine what to protect and how. How to approach risk management for information security is an ongoing debate as there are several difficulties in existing approaches. The problems and challenges within the discipline are not easily visible being dispersed throughout literature. There is therefore a need for an overview for both industry and researchers to obtain a holistic picture of the research area and to contribute in making progress. In this paper, we present a taxonomy of identified problems from literature within information security risk management, and highlight some of the important prevailing issues that are contributing to lack of progress within the research field.

Publisher

Akademika Forlag