IT security: protecting organizations in spite of themselves

It is a mantra of the profession that any search for strictly technical solutions that do not take the human and organizational elements into account is doomed to failure. This becomes especially interesting when it is borne out in an inherently technical realm, populated with techies. In this artic...

Full description

Saved in:
Bibliographic Details
Published in:Interactions (New York, N.Y.) N.Y.), 2006-05, Vol.13 (3), p.20-27
Main Authors: Siegel, David A., Reid, Bill, Dray, Susan M.
Format: Magazinearticle
Language:English
Subjects:
Cybersecurity
Data integrity
Information technology
Network security
Professionals
Security management
Software utilities
Trends
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:It is a mantra of the profession that any search for strictly technical solutions that do not take the human and organizational elements into account is doomed to failure. This becomes especially interesting when it is borne out in an inherently technical realm, populated with techies. In this article, the authors share highlights from a field study of IT security at three companies. All of the companies the authors visited were having problems in the following areas, all of which are crucial to developing and implementing an effective IT security strategy: 1. Maintaining a holistic, comprehensive perspective on the issue. 2. Disseminating and institutionalizing practices throughout the organization. 3. Achieving an effective level of partnership with the larger business around security.
ISSN:1072-5520
1558-3449
DOI:10.1145/1125864.1125885