Affiliation:
1. Alexandrian Technological Educational Institute of Thessaloniki, Greece
2. University of Macedonia, Greece
Abstract
Most industries have been influenced in different ways by e-commerce, and the banking industry is no exception. Particularly, banks are embracing electronic banking (e-banking) as a service to reach a wider market share, increase customer satisfaction and lower operational costs. This increased supply and demand in e-banking services has caused not only opportunities but also risks. The need to manage and regulate those risks calls for a sound Information Technology Security Governance (ITSG) program as means to deliver value business and mitigate Information Technology (IT) risks. In this regard, the chapter’s objectives are to explore, evaluate, and compare the current status and characteristics of Information Security Governance (ISG) approaches for e-banking. Therefore, the authors focus on an analysis of reputed best standards, guidelines on governance, risk management methods, and internal controls currently used for e-banking as means to research which satisfies best ISG objectives. Results show that banks should not be restricted to currently used approaches to ISG for e-banking but should take into consideration benefits and shortcomings other approaches possess. In this regard, the authors propose an ITSG framework for e-banking as a continuous process for assuring ISG objectives. They also highlight the importance of consistent measurement of metrics of ITSG performance with the aid of security content automation protocol.
Reference81 articles.
1. Information security governance in Saudi organizations: An empirical study.;A.Abu-Musa;Information Management & Computer Security,2010
2. Adoption of Internet banking among sophisticated consumer segments in an advanced developing country.;S.Akinci;International Journal of Bank Marketing,2004
3. E-banking: Challenges and opportunities in the Greek banking sector.;G.Angelakopoulos;Electronic Commerce Research,2011
4. Arshad, N. H., May-Lin, Y., Mohamed, A., & Affandi, S. (2007). Inherent risks in ICT outsourcing project. Proceeding of the 8th WSEAS Conference, 8(4), 141 – 146. Retrieved July 20, 2011, from http://www.wseas.us/elibrary/transactions/economics/2007/24-107.pdf
Cited by
4 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献