期刊名称:International Journal of Multimedia and Ubiquitous Engineering
印刷版ISSN:1975-0080
出版年度:2008
卷号:3
期号:3
出版社:SERSC
摘要:Information Technology (IT) governance is important in every Enterprise to ensure the execution of the firm's security policies and procedures. It is a subset discipline of Corporate Governance focused on information technology (IT) systems and their performance and risk management. This paper sights current some problems. It also presents the framework for ensuring that the organization’s policies are implemented over time. Since most of these policies require human involvement, the goals are met only if human activities can be influenced and monitored. This is the challenge to IT governance. One issue is to which IT security controls should be centralized or decentralized.
关键词:IT Governance; IS Centralization; Security Management; IT Security
