 Security Risk Management at a Fortune 500 Firm: A Case StudyHumayun Zafar Journal of Information Privacy and Security, 2011, vol. 7, issue 4, 23-53 Abstract: Information security is a naturally intrusive topic that has not been researched to its full extent in IS. Taking note of a previous information security study that failed and lessons learned from it, we successfully carry out a study of our own with some modifications. The purpose of the study was to successfully identify critical success factors for an effective security risk management program at a Fortune 500 firm. In this paper we detail the modified critical success factor method that was used, which we hope will prove beneficial for academic researchers. The study has practical implications in regard to being able to provide a method that corporations may find suitable when a sensitive subject is being investigated. Date: 2011 Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:taf:uipsxx:v:7:y:2011:i:4:p:23-53 Ordering information: This journal article can be ordered from DOI: 10.1080/15536548.2011.10855922 Access Statistics for this article Journal of Information Privacy and Security is currently edited by Chuleeporn Changchit More articles in Journal of Information Privacy and Security from Taylor & Francis Journals |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.