Abstract
This paper investigates the co-existence of and complementary use of COBIT and ISO 17799 as reference frameworks for Information Security governance. The investigation is based on a mapping between COBIT and ISO 17799 which became available in 2004, and provides a level of 'synchronization' between these two frameworks.
Original language | English |
---|---|
Pages (from-to) | 99-104 |
Number of pages | 6 |
Journal | Computers and Security |
Volume | 24 |
Issue number | 2 |
DOIs | |
Publication status | Published - Mar 2005 |
Keywords
- COBIT
- Corporate governance
- ISO 17799
- IT audit
- Information Security
- Information Security governance
- Information Technology governance
- Risk management
ASJC Scopus subject areas
- General Computer Science
- Law