Abstract
Public organizations lack adequate models and methods to efficiently support and manage processes related to information security and IT investments. The objective is to optimize the management of strategic projects planned to improve the information security of a public organization and make efficient use of its available resources. The deductive method and exploratory research were used to review and analyze the available information. A mathematical model resulted that optimizes two objectives: (1) minimizing the costs of the strategic projects to be executed, and (2) maximizing the percentage of improvement in the organization’s information security. According to the result of the simulation, a subset of planned strategic projects was obtained that allows improving the information security of a public organization from 84.64% to 92.20%, considering the budgetary limitations of the organization. It was concluded that the proposed model is efficient, practical and can be a support tool for the IT management of a public organization.
Reference96 articles.
1. Gartner. Gartner Prevé que el Gasto Mundial en TI Alcanzará los 4,4 Billones de Dólares en 2022. Gartner, Inc. 2022.
2. Check-Point-Research. Check Point Software’s 2022 Security Report: Global Cyber Pandemic’s Magnitude Revealed. 2022.
3. A Conceptual Model for a Metric Based Framework for the Monitoring of Information Security Tasks’ Efficiency;Sönmez;Procedia Comput. Sci.,2019
4. The role of data and information security governance in protecting public sector data and information assets in national government in South Africa;Masilela;Afr. Public Serv. Deliv. Perform. Rev.,2021
5. Economic valuation for information security investment: A systematic literature review;Schatz;Inf. Syst. Front.,2016
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献