A Study on Design Direction of Industry-Centric Security Level Evaluation Model through Analysis of Security Management System
Recently, the necessity of systematic security management system that consider company’ character and environment has appeared because of increasing security accident continuously in domestic companies. However, most of companies has applied to only K-ISMS which is existing information security management system, although They are different from object, purpose and way of security level evaluation by companies. According to this situation, Many experts have questioned that there are many problems with effectiveness of introducing security management system. In this study, We established definition of information security management system, industrial security management system and research security management system through analysis of previous study and developed evaluation item which can implement security in whole industry comparing and analyzing the control items of them. Also, we analyzed existing security level evaluation and suggest design direction of industry-centric security level evaluation model considering character of industry.
Bae, S. T. and Kim, J. H., “A Study on Development of the Evaluation Model about Level of Security in National R&D Program,” The Journal of Korean Association of Computer Education, Vol. 16, No. 1, pp. 73-80, 2012.
Chang, S. E. and Ho, C. B., “Organizational factors to the effectiveness of implementing information security management”, Industrial Management and Data Systems, Vol. 106, No. 3, pp. 345-361, 2006.
Choi, J. W. and Jung, J. H., “Study on Building Security Controls Framework for The Industrial Security Management System,” Korean Academy of Public Safety and Criminal Justice, Vol. 22, No. 1, pp. 295-337, 2013.
Choi, J. and Nazareth, D. L., “System Dynamics Model for Information Security Management,” Information and Management, Vol. 52, No. 1, pp. 123-134, 2014.
Jin, C. Y., Kim, A. C., and Lim, J. I., “Correlation Analysis in Information Security Checklist Based on Knowledge Network,” The Journal of Society for e- Business Studies, Vol. 19, No. 2, pp. 109- 124, 2014.
Jo, M. K., Kim, S. C., Hwang, J. M., and Kim, S. C., “A Study on the Effect of Institutionalization of the Security Education: Survey of National R&D Projects,” The Journal of Korean Association of Computer Education, Vol. 17, No. 2, pp. 21-29, 2014.
Kang, H. S., “An Analysis of Information Security Management System and Certification Standard for Information Security,” Journal of Security Engineering, Vol. 11, No. 6, pp. 445-468, 2014.
Kim, C. H. and Yoo, J. H., “Priority of the Government Policy to support Industrial Security-Focus on a companies’ demand and efficiency of policy,” The Journal of Korean Security Science Association, Vol. 42, pp. 155-178, 2015.
Kim, Y. H. and Chang, H. B., “The Industrial Security Management Model for SMBs in Smart Work,” Journal of Intelligent Manufacturing, Vol. 25, No. 2, pp. 319-327, 2012.
Lee, C. S. and Kim, Y. H., “An Analysis of Relationship between Industry Security Education and Capability: Case Centric on Insider Leakage,” The Journal of Society for e-Business Studies, Vol. 20, No. 2, pp. 27-36, 2015.
Park, C. S., Lee, D. B., and Kwak, J., “A Study on Enterprise and Government Information Security Enhancement with Information Security Management System,” The Journal of Korea Navigation Institute, Vol. 15, No. 6, pp. 1220-1227, 2011.
The Korean Association for Research of Industrial Security, “A Study on the Conceptual Definition of Industrial Security,” The Journal of Korean Association for Industry Security, Vol. 2, No. 1, pp. 73- 90, 2011.
- There are currently no refbacks.