A Conceptual Model for a Metric Based Framework for the Monitoring of Information Security Tasks' Efficiency


Sonmez F. O.

10th International Conference on Emerging Ubiquitous Systems and Pervasive Networks (EUSPN) / 9th International Conference on Current and Future Trends of Information and Communication Technologies in Healthcare (ICTH), Coimbra, Portugal, 4 - 07 November 2019, vol.160, pp.181-188 identifier identifier

  • Publication Type: Conference Paper / Full Text
  • Volume: 160
  • Doi Number: 10.1016/j.procs.2019.09.459
  • City: Coimbra
  • Country: Portugal
  • Page Numbers: pp.181-188

Abstract

Information Security Governance Systems are not adequate to measure the effectiveness and efficiency of security tasks for the enterprises. Although some of the systems offer ways for measurement, they still need the definition of measurement objectives and metrics. This study proposes a conceptual framework mode which has human and tool/process related metrics. This system also allows the collection of evidence data for security-related tasks and ways to motivate the security staff to provide a more productive environment. This system may be applied to any size of enterprise independent of its business domain or functions as long as the aim is to improve the effectiveness and efficiency of security-related tasks. (C) 2019 The Authors. Published by Elsevier B.V.