By Topic

Knowledge-Centric Information Security

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)
Fung, W.S.L. ; Inf. Technol., Kuoni Travel (China) Ltd., Hong Kong, China ; Fung, R.Y.K.

Increasing number of enterprises consider information security (InfoSec) as a key success factor whereas threats can originate from any part of the world over internet. Incidents such as 11th September of 2001, and hacker horror stories, awaken enterprises they should reshape their InfoSec policies. Traditionally InfoSec relies heavily on technology, investing large amount of money on software and hardware. In the last decade process based information security management system (ISMS) such as ISO27001 has emerged. Many organizations since then have adopted such ISMS. KM is another management discipline enterprises employ, with aim to foster a more effective management of knowledge creation for innovations. This paper proposes a research initiative to integrate KM and InfoSec together into a knowledge-centric InfoSec (KCIS) System. Organizations should be able to improve their InfoSec maturity level, by adopting KCIS in phases.

Published in:

Security Technology, 2008. SECTECH '08. International Conference on

Date of Conference:

13-15 Dec. 2008