Information Security governance: COBIT or ISO 17799 or both?

Basie Von Solms

doi:10.1016/j.cose.2005.02.002

Information Security governance: COBIT or ISO 17799 or both?

Basie Von Solms

Academy of Computer Science and Software Engineering

Research output: Contribution to journal › Article › peer-review

115 Citations (Scopus)

Abstract

This paper investigates the co-existence of and complementary use of COBIT and ISO 17799 as reference frameworks for Information Security governance. The investigation is based on a mapping between COBIT and ISO 17799 which became available in 2004, and provides a level of 'synchronization' between these two frameworks.

Original language	English
Pages (from-to)	99-104
Number of pages	6
Journal	Computers and Security
Volume	24
Issue number	2
DOIs	https://doi.org/10.1016/j.cose.2005.02.002
Publication status	Published - Mar 2005

Keywords

COBIT
Corporate governance
ISO 17799
IT audit
Information Security
Information Security governance
Information Technology governance
Risk management

ASJC Scopus subject areas

General Computer Science
Law

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1016/j.cose.2005.02.002

Cite this

@article{57031b9514584dd0825f2469fd8a0d92,

title = "Information Security governance: COBIT or ISO 17799 or both?",

abstract = "This paper investigates the co-existence of and complementary use of COBIT and ISO 17799 as reference frameworks for Information Security governance. The investigation is based on a mapping between COBIT and ISO 17799 which became available in 2004, and provides a level of 'synchronization' between these two frameworks.",

keywords = "COBIT, Corporate governance, ISO 17799, IT audit, Information Security, Information Security governance, Information Technology governance, Risk management",

author = "\{Von Solms\}, Basie",

year = "2005",

month = mar,

doi = "10.1016/j.cose.2005.02.002",

language = "English",

volume = "24",

pages = "99--104",

journal = "Computers and Security",

issn = "0167-4048",

publisher = "Elsevier Ltd.",

number = "2",

}

TY - JOUR

T1 - Information Security governance

T2 - COBIT or ISO 17799 or both?

AU - Von Solms, Basie

PY - 2005/3

Y1 - 2005/3

N2 - This paper investigates the co-existence of and complementary use of COBIT and ISO 17799 as reference frameworks for Information Security governance. The investigation is based on a mapping between COBIT and ISO 17799 which became available in 2004, and provides a level of 'synchronization' between these two frameworks.

AB - This paper investigates the co-existence of and complementary use of COBIT and ISO 17799 as reference frameworks for Information Security governance. The investigation is based on a mapping between COBIT and ISO 17799 which became available in 2004, and provides a level of 'synchronization' between these two frameworks.

KW - COBIT

KW - Corporate governance

KW - ISO 17799

KW - IT audit

KW - Information Security

KW - Information Security governance

KW - Information Technology governance

KW - Risk management

UR - https://www.scopus.com/pages/publications/17844364638

U2 - 10.1016/j.cose.2005.02.002

DO - 10.1016/j.cose.2005.02.002

M3 - Article

AN - SCOPUS:17844364638

SN - 0167-4048

VL - 24

SP - 99

EP - 104

JO - Computers and Security

JF - Computers and Security

IS - 2

ER -

Information Security governance: COBIT or ISO 17799 or both?

Abstract

Keywords

ASJC Scopus subject areas

UN SDGs

Access to Document

Other files and links

Fingerprint

Cite this