Skip to Main content Skip to Navigation
Conference papers

Enterprise Information Systems Security: A Conceptual Framework

Abstract : Over the past half a century, organizations have implemented information systems for managing their business processes. These information systems have now evolved into what are more commonly known as enterprise information systems. An important facet of implementing an enterprise information system in an organization is the development of security related issues within the information system for the business processes. In this paper, we review the relevant literature related to the security policies that are associated with the use of enterprise information systems within organizations. Based on this literature review, we identify four major issues which are security policy documentation, employee awareness, top management support, and access control. A conceptual framework based on these four issues is then presented within the context of corporate governance for the security of the enterprise information systems. We conclude our work with the future direction for this research.
Complete list of metadata

Cited literature [32 references]  Display  Hide  Download

https://hal.inria.fr/hal-01483876
Contributor : Hal Ifip <>
Submitted on : Monday, March 6, 2017 - 3:33:56 PM
Last modification on : Thursday, March 5, 2020 - 4:47:19 PM
Long-term archiving on: : Wednesday, June 7, 2017 - 2:37:46 PM

File

978-3-642-28827-2_9_Chapter.pd...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Peggy Chaudhry, Sohail Chaudhry, Ronald Reese, Darryl Jones. Enterprise Information Systems Security: A Conceptual Framework. 5th Working Conference on Research and Practical Issues of Enterprise Information Systems (CONFENIS), Oct 2011, Aalborg, Denmark. pp.118-128, ⟨10.1007/978-3-642-28827-2_9⟩. ⟨hal-01483876⟩

Share

Metrics

Record views

286

Files downloads

1165