Implementing converged security risk management: drivers, barriers, and facilitators

Schneller, Louisa, Porter, Cody Normitta and Wakefield, Alison ORCID: https://orcid.org/0000-0002-1553-9178 (2022) Implementing converged security risk management: drivers, barriers, and facilitators. Security Journal. ISSN 0955-1662

[img] PDF
Schneller_Porter_and_Wakefield_2022_sejo_Implementing_converged_security_management.pdf - Accepted Version
Restricted to Repository staff only until 11 May 2023.

Download (1MB) | Request a copy

Abstract

Converged security risk management is an approach that addresses interdependencies between security-related business functions that have traditionally been managed by separate departments within organizations. It is a more effective means of addressing organizational security risks and threats than tackling physical and information security challenges separately, given that the boundaries between the two are frequently blurred. However, fully converged security remains the exception rather than the rule, leaving organizations increasingly vulnerable as their adoption and reliance on digital technologies accelerates. Through interviews with eight senior security professionals, this research identified key factors critical to effective converged security risk management, expressed as ‘drivers,’ ‘barriers,’ and ‘facilitators.’ The practitioners’ accounts illuminated how the modern threat landscape continues to drive further the need for such an approach, while the traditional separation of corporate security departments from the information security function in organizations remains a barrier. A greater focus on training and education, as well as soft skills, were identified as key priorities in the drive for an effective converged approach.

Item Type: Article
Identifier: 10.1057/s41284-022-00341-6
Additional Information: This is a post-peer-review, pre-copyedit version of an article published in Security Journal. The definitive publisher-authenticated version [Schneller, L., Porter, C.N. & Wakefield, A. Implementing Converged Security Risk Management: Drivers, Barriers, and Facilitators. Secur J (2022). https://doi.org/10.1057/s41284-022-00341-6] is available online at: https://doi.org/10.1057/s41284-022-00341-6
Keywords: Convergence, Business continuity, Enterprise risk management, Soft skills, Training, Security management
Subjects: Computing > Information security
Related URLs:
Depositing User: Alison Wakefield
Date Deposited: 28 Jul 2022 13:16
Last Modified: 28 Jul 2022 14:53
URI: https://repository.uwl.ac.uk/id/eprint/9271

Actions (login required)

View Item View Item

Menu