The lack of a fully inclusive guideline document to assist the functioning of sufficient Information Security Governance is common in the business environment. This article focuses on developing such a guideline document, based on a number of best practice documents. The resulting model covers all the relevant aspects on strategic, management and technical level when implemented altogether. This model includes the related aspects of Corporate Governance, Information Technology Governance and Information Security Governance. By applying a best practice driven Information Security Governance model, an organisation ensures that all aspects regarding Information Security Governance are covered in detail. Additionally, the implementation of the best practice driven Information Security Governance model allows organisations to conform to major best practice documents, standards and legal documents
Reference:
Lessing, M and Von Solms, SH. 2008. Building a world class information security governance model. IST-Africa 2008 Conference, Windhoek, Namibia, 7-9 May, pp 9.
Lessing, M., & Von Solms, S. (2008). Building a world class information security governance model. http://hdl.handle.net/10204/3128
Lessing, M, and SH Von Solms. "Building a world class information security governance model." (2008): http://hdl.handle.net/10204/3128
Lessing M, Von Solms S, Building a world class information security governance model; 2008. http://hdl.handle.net/10204/3128 .