Governance of Information Security Elements in Service-Oriented Enterprise Architecture

This paper identifies and analyzes governance roles and tasks in SOA security governance at macro level. Drawing from Information security management standards and frameworks on one hand and SOA considerations on the other hand, the identified governance elements are mapped to a governance structure...

Full description

Saved in:
Bibliographic Details
Main Authors: Korhonen, J.J., Yildiz, M., Mykkanen, J.
Format: Conference Proceeding
Language:English
Subjects:
IEC standards
Information management
Information security
information security management (ISM)
ISO standards
Resource management
Risk management
security
Semiconductor optical amplifiers
Service oriented architecture
Standards organizations
Web services
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:This paper identifies and analyzes governance roles and tasks in SOA security governance at macro level. Drawing from Information security management standards and frameworks on one hand and SOA considerations on the other hand, the identified governance elements are mapped to a governance structure that specifies planning and execution aspects at four organizational decision-making levels, resulting in a prescriptive model with practical relevance. This constructive study combines theoretical models and standards with industry experience of the authors.
ISSN:1087-4089
2375-527X
DOI:10.1109/I-SPAN.2009.158