BC3I : towards requirements specification for preparing an information security budget

Dlamini, M.T.; Eloff, M.M.; Eloff, J.H.P.; Hone, K.

UnisaIR Home
→
College of Science, Engineering and Technology
→
School of Computing
→
Research Outputs (School of Computing)
→
View Item

dc.contributor.author	Dlamini, M.T.
dc.contributor.author	Eloff, M.M.
dc.contributor.author	Eloff, J.H.P.
dc.contributor.author	Hone, K.
dc.date.accessioned	2009-10-08T08:24:44Z
dc.date.available	2009-10-08T08:24:44Z
dc.date.issued	2009-07
dc.identifier.citation	Proceedings of the ISSA Conference, 6 - 8 July 2009, University of Johannesburg's School of Tourism and Hospitality facility, Auckland Park, Johannesburg, South Africa.	en
dc.identifier.isbn	978-1-86854-740-1
dc.identifier.uri	http://hdl.handle.net/10500/2663
dc.description.abstract	The entire business landscape finds itself on the verge of a recession because of ongoing global economic turmoil. Thus, there is a heightened need to minimise and mitigate business risk and scrutinise information spending while ensuring compliance with regulatory mandates. This calls for decision makers to become vigilant in their spending and move towards an optimised information security investment. The main aim of this paper is to provide decision makers with a set of requirements to be considered when implementing a cost-effective and optimal information security budget; in a manner that preserve organisations’ information security posture and compliance status. Research reported on in this paper forms part of an ongoing project known as the BC3I (Broad Control Category Cost Indicators) framework.	en
dc.language.iso	en	en
dc.publisher	Information Security South Africa (ISSA)	en
dc.subject	Information security spending	en
dc.subject	Requirements	en
dc.subject	Controls	en
dc.subject	Economics	en
dc.subject	Information security breaches	en
dc.subject	Regulatory compliance	en
dc.title	BC3I : towards requirements specification for preparing an information security budget	en
dc.type	Article	en