Information Security governance: COBIT or ISO 17799 or both?

Computers and Security

Volumn 24, Issue 2, 2005, Pages 99-104

  Von Solms, Basie ^a  

^a UNIVERSITY OF JOHANNESBURG   (South Africa)

Author keywords

COBIT; Corporate governance; Information Security; Information Security governance; Information Technology governance; ISO 17799; IT audit; Risk management

Indexed keywords

INFORMATION TECHNOLOGY; INFORMATION USE; MAPPING; PUBLIC POLICY; SOCIETIES AND INSTITUTIONS; SYNCHRONIZATION;

COBIT; CONTROL OBJECTIVE (CO); INFORMATION SECURITY GOVERNANCE; ISO 17799;

SECURITY OF DATA;

EID: 17844364638     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.cose.2005.02.002     Document Type: Article

References (5)

1. An automated COBIT/ISO mapping. Masters project at the University of Johannesburg; 2005, 〈http://basie@rau.ac.za〉.
2. COBIT Mapping: Mapping of ISO/IEC 17799:2000 with COBIT. USA: IT Governance Institute 〈http://www.itgi.org〉
3. Control objectives for information and related technologies (COBIT) 3rd ed. 2000 IT Governance Institute USA
4. Information Security Governance - a call to action. National Cyber Security Summit Task Force, 〈http://www.technet.org/resources/ InfoSecGov4_04.pdf〉.
5. ISO/IEC 17799 Information technology - code of practice for information security management 2000 International Organization for Standardization (ISO) Switzerland