An inter-organizational community of practice for information security

Author

Fung, Walter S L ; Fung, Richard Y K

Author_Institution

Dept. of MEEM, City Univ. of Hong Kong, Hong Kong, China

fYear

2010

fDate

11-13 May 2010

Firstpage

236

Lastpage

241

Abstract

Enterprises used to focus on technology when they deal with information security (InfoSec) risks. In recent years information security management system (ISMS) such as ISO27001 has been adopted to refine the roles of people and process under the paradigm of InfoSec. Some researchers have tried to address the importance of knowledge security protection. However, only few researches concern about the knowledge competency of InfoSec practitioners. This position paper describes an ongoing research which tries to adopt a community of practice (CoP), a widely used knowledge management (KM ) tool, to improve the security knowledge level of InfoSec practitioners.

Keywords

information management; knowledge management; security of data; community of practice; information security management system; information security risk; interorganizational community; knowledge competency; knowledge management tool; knowledge security protection; Control systems; Educational institutions; Information management; Information security; Knowledge management; Management information systems; Protection; Terrorism; US Government; Community of Practice; ISO27001; Information Security; Knowledge Management;

fLanguage

English

Publisher

ieee

Conference_Titel

New Trends in Information Science and Service Science (NISS), 2010 4th International Conference on

Conference_Location

Gyeongju

Print_ISBN

978-1-4244-6982-6

Electronic_ISBN

978-89-88678-17-6

Type

conf

Filename

5488613