179221. |
|
|
179222. |
|
|
179223. |
|
|
179224. |
|
|
179225. |
- Moses, Frank, et al.
(författare)
-
Empirical Study on the State of Practice of Information Security Management in Local Government
- 2022
-
Ingår i: Human Centred Intelligent Systems. - Singapore : Springer. - 9789811934544 - 9789811934551 ; , s. 13-25
-
Konferensbidrag (refereegranskat)abstract
- Modern administrative action is no longer conceivable without electronic communication and IT. The complexity of IT, the increasing degree of networking and the dependence of the administration on IT-supported procedures has led to the fact that security of IT and associated processes must be given high priority and a corresponding cybersecurity strategy must be substantiated. Existing approaches either fall short or cannot be applied to the context of local government without adaptation. This article aims at contrasting the published state-of-the-art in information security management and the state-of-practice in governmental organizations. Empirical basis for our work are (1) audit reports of certification audits in the municipal sector, (2) expert interviews on the status quo of information security in German local government and (3) a review of scientific literature. Results of the paper include current challenges in increasing the resilience of the municipal administration and open issues for future research.
|
|
179226. |
- Moses, Frank, et al.
(författare)
-
Information security management in German local government
- 2022
-
Ingår i: Communication Papers of the 17th Conference on Computer Science and Intelligence Systems, FedCSIS 2022, September 4-7, 2022, Sofia, Bulgaria. - Warszawa : Polskie Towarzystwo Informatyczne. - 9788396589743 - 9788396589750 ; , s. 183-189
-
Konferensbidrag (refereegranskat)abstract
- The growing importance of information security in organizations is undisputed. This is particularly true of local governments, because modern administrative action is no longer conceivable today without electronic communication media and IT procedures. The complexity of information technology, the increasing degree of networking (also with citizens) and the dependence of the administration on IT-supported procedures has led to the fact that the security of information technology and associated processes must be given a higher priority and a corresponding cybersecurity strategy must be substantiated. Existing approaches either fall short or cannot be applied to the context of local government without revision and adaptation. In this article, case studies of implementations of IT security projects in local government are examined. Specific focus is on the differences between information security management system (ISMS) implementations of different hierarchical levels of governmental organizations. The results show current challenges in increasing the resilience of the local government.
|
|
179227. |
- Moses, Frank, et al.
(författare)
-
ISMS in small public sector organisations : requirements and design of a procedural approach
- 2023
-
Ingår i: CEUR Workshop Proceedings. - : CEUR-WS. ; , s. 1-10
-
Konferensbidrag (refereegranskat)abstract
- At a time when information technology is growing faster than ever before, information security management system (ISMS) assessment has become one of the most important aspects of most public sector organisations. The dependency on technology for almost every single process in an organisation has put ISMS at the top of the corporate agenda of public sector organisations. For public organisations in particular, the NIS 2 Directive describes abstract requirements for the development of an ISMS. On the other hand, only a few public administrations operate an ISMS. In this context, this paper analyses the requirements of the NIS-2 Directive and complements them with the obstacles and reasons for success in the introduction of ISMS in small public sector organisations (SPSO). At the same time, minimum requirements should be defined that help municipal administration set up an information security management system quickly and easily. This paper summarizes the different requirements and generates a foundation for a rough procedural model, for implementing the upcoming requirements of the NIS 2 Directive quickly and easily in local governments.
|
|
179228. |
|
|
179229. |
|
|
179230. |
|
|