Schneller, Louisa, Porter, Cody Normitta and Wakefield, Alison ORCID: https://orcid.org/0000-0002-1553-9178 (2022) Implementing converged security risk management: drivers, barriers, and facilitators. Security Journal. ISSN 0955-1662
Preview |
PDF
Schneller_Porter_and_Wakefield_2022_sejo_Implementing_converged_security_management.pdf - Accepted Version Download (1MB) | Preview |
Abstract
Converged security risk management is an approach that addresses interdependencies between security-related business functions that have traditionally been managed by separate departments within organizations. It is a more effective means of addressing organizational security risks and threats than tackling physical and information security challenges separately, given that the boundaries between the two are frequently blurred. However, fully converged security remains the exception rather than the rule, leaving organizations increasingly vulnerable as their adoption and reliance on digital technologies accelerates. Through interviews with eight senior security professionals, this research identified key factors critical to effective converged security risk management, expressed as ‘drivers,’ ‘barriers,’ and ‘facilitators.’ The practitioners’ accounts illuminated how the modern threat landscape continues to drive further the need for such an approach, while the traditional separation of corporate security departments from the information security function in organizations remains a barrier. A greater focus on training and education, as well as soft skills, were identified as key priorities in the drive for an effective converged approach.
Item Type: | Article |
---|---|
Identifier: | 10.1057/s41284-022-00341-6 |
Additional Information: | This is a post-peer-review, pre-copyedit version of an article published in Security Journal. The definitive publisher-authenticated version [Schneller, L., Porter, C.N. & Wakefield, A. Implementing Converged Security Risk Management: Drivers, Barriers, and Facilitators. Secur J (2022). https://doi.org/10.1057/s41284-022-00341-6] is available online at: https://doi.org/10.1057/s41284-022-00341-6 |
Keywords: | Convergence, Business continuity, Enterprise risk management, Soft skills, Training, Security management |
Subjects: | Computing > Information security |
Related URLs: | |
Depositing User: | Alison Wakefield |
Date Deposited: | 28 Jul 2022 13:16 |
Last Modified: | 29 Jul 2024 11:45 |
URI: | https://repository.uwl.ac.uk/id/eprint/9271 |
Downloads
Downloads per month over past year
Actions (login required)
View Item |