Better information security management in municipalities

Author

De Lange, Joshua ; Von Solms, Rossouw ; Gerber, Mariana

Author_Institution

Nelson Mandela Metropolitan Univ., Port Elizabeth, South Africa

fYear

2015

fDate

6-8 May 2015

Firstpage

1

Lastpage

10

Abstract

Municipalities handle valuable information in very large quantities on a daily basis. Due to the value, and often confidential nature, of this information, the protection of the information and the related technologies are a key concern for municipalities, especially in South Africa. For this very reason, several official government documents require South African municipalities to implement effective information security management systems. However, according to the Auditor General of South Africa, municipalities are struggling in this regard. This study uses a literature review, document analysis, and argumentation to identify the crucial components of an information security management system. These components are then logically presented in a hierarchical structure to possibly assist municipalities to improve their individual information security management processes. Addressing these components can also be applied in municipalities across Africa to improve information security management.

Keywords

document handling; government data processing; local government; security of data; South Africa; document analysis; hierarchical structure; information protection; information security management systems; literature review; municipalities; official government documents; Best practices; IEC Standards; ISO Standards; Information security; Local government; Governance of Information Security; ISO/IEC 27002 standard; Information Security; Information Security Management; Information Security Policy; Municipal Council; Municipalities;

fLanguage

English

Publisher

ieee

Conference_Titel

IST-Africa Conference, 2015

Conference_Location

Lilongwe

Type

conf

DOI

10.1109/ISTAFRICA.2015.7190529

Filename

7190529