Technique for Evaluating the Effectiveness of the Information Security Department | IEEE Conference Publication | IEEE Xplore